SSL/TLS Configuration

Valid for versions 92 through the latest version



Last modified: October 16, 2020


This interface lets you modify your server’s SSL/TLS-related configurations.

Default SSL/TLS Key Type

Use this feature to select a default SSL/TLS key type for your server. The system uses the selected key type when it provisions all users’ SSL/TLS certificates and signing requests. It also uses this key to generate root’s SSL/TLS keys. By default, the system uses the RSA, 2,048-bit key type. For more information about the available key types, read the SSL/TLS Key Types documentation.

After you select your preferred key type, click Save to update your server’s settings.

  • You can also change this setting in the Security section of WHM’s Tweak Settings interface (WHM » Home » Server Configuration » Tweak Settings).
  • cPanel users can set their own preferred SSL/TLS key type in cPanel’s SSL/TLS interface (cPanel » Home » Security » SSL/TLS). The user’s selected setting will supersede the system-level setting.

When you update this setting, the system will perform an AutoSSL run. This updates all installed AutoSSL-issued certificates to use the new key type.

Additional Documentation