Quick answer: In cPanel, AutoSSL issues and renews free SSL automatically. Check SSL/TLS Status, and for any uncovered domain click Run AutoSSL. It validates over HTTP, so the domain must point to the server. Then enable Force HTTPS Redirect so every visitor uses the secure version.
On a cPanel server, AutoSSL issues and renews free SSL certificates automatically, so most sites get HTTPS with no manual work. This guide shows how to confirm it is working and how to fix a domain it has not secured.
Log in to cPanel and open SSL/TLS Status under the Security section. It lists every domain and subdomain on the account with its certificate state. A domain marked as covered by AutoSSL needs nothing further.
If a domain shows no certificate, tick it and click Run AutoSSL. AutoSSL validates that the domain points to this server, then issues and installs a certificate covering the domain, its www version, and common service subdomains such as mail and cpanel.
AutoSSL proves control by loading a validation file over HTTP, so the domain must already point to this server. The usual reasons it fails are: the domain's DNS still points elsewhere, a redirect sends the validation request away, or an .htaccess rule blocks the validation path. Fix the DNS or redirect, then run AutoSSL again.
If the certificate covers the bare domain but not www (or a subdomain), that hostname likely has separate or missing DNS. Point it at the server and re-run AutoSSL so it is added to the certificate.
Load https://yourdomain.com and check the padlock. cPanel can redirect HTTP to HTTPS automatically - enable Force HTTPS Redirect in the Domains area so every visitor uses the secure version.
Why does AutoSSL fail for a domain?
Usually its DNS points elsewhere or a redirect blocks the HTTP validation; fix that and re-run AutoSSL.
Does it renew automatically?
Yes - AutoSSL renews certificates without intervention.
cPanel is available on SoftSys managed Linux VPS plans, where our team keeps AutoSSL healthy and certificates renewing so your sites stay on HTTPS without intervention.