Frappe Cloud Support Partners Foundation

[Tutorial] How to setup a purchased SSL certificate on erpnext site

[1] Generate CSRs (Certificate Signing Requests)
[1.1]Login to server where erpnext is installed
[1.2] command to generate csr with private key

openssl req -new -newkey rsa:2048 -nodes -keyout -out

[1.3] 2 files are generated in directory where above command is run. and
[1.4]Open in nano/text editor and copy its content

[2] Provide CSR to godaddy or from where u r purchasing certificate
[2.1] Go to SSL->Domain–>Rekey–>Provide CSR
[2.2] Download certificate ex 5771137810388d5.crt
[2.3] Rename file to
Above steps will differ based on from where it is purchased.

[3] Install certificate on your ERPNext server
[3.1] Go to ERPNext server. Upload and to /etc/nginx/conf.d/ssl/
[3.2] Commands to run
[3.2.1]Setup Multitenancy. Ref

bench config dns_multitenant on
bench setup nginx
sudo service nginx reload

[3.2.2] Update site_config.json with path of certificate and key. Ref

bench set-ssl-certificate /etc/nginx/conf.d/ssl/
bench set-ssl-key /etc/nginx/conf.d/ssl/
bench setup nginx
sudo service nginx reload


Awesome! Can you update docs if anything missing.

1 Like

@saurabh6790, i have created pull request
Your steps are comprehensive and clear. I just added 2 things (a) CSR command (b) Prerequisite of multitenancy. Thanks

Some useful links in above process:

While generating CSR, key gets generated and you are asked different questions. Below link explains those question. important is Common Name

1 Like

Refer this link,