Skip to main content

Please log into UltraDNS for full Help Center and Community access

How to Configure HTTPS Web Forwarding in UltraDNS

Updated

UltraDNS now supports secure HTTPS-based Web Forwarding using your own TLS certificates. 

This guide walks you through the full setup process from requesting access to uploading your certificate and activating HTTPS redirects.

Step 1: Request HTTPS Web Forwarding

To get started, refer to this article on How to Submit a Request to Enable HTTPS Web Forwarding in UltraDNS.

Step 2: Open Certificate Management

Once HTTPS is enabled, a new menu item will appear:

  • Go to Domains

  • Click Certificate Management in the left-hand menu

Step 3: Configure Expiration Notifications

To avoid certificate expiration downtime:

  1. Click the yellow “Configure now” banner at the top.
  2. This opens Notification Settings.
  3. Scroll down to the Certificate Management Notifications section.
  4. Click Add, enter your email, and click Add again.

You’ll receive automated reminders at 45, 30, 15, 10, 5, and 1 day(s) before certificate expiration.

Step 4: Review Upload Guidelines

Before uploading your certificate:

  • Click the blue question mark icon next to “Upload New Certificate.”
  • This guide explains:
    • Supported file formats: .crt, .key, .pem (optional)
    • Common upload issues (expired certs, mismatched keys, invalid file names, private/encrypted .key files, etc.)

Step 5: Upload Your Certificate

Click Upload New Certificate, then:

  1. Enter a name for your certificate.
  2. Optionally add a description.
  3. Upload the required files:
    • Certificate file (.crt or .cer)
    • Private Key file (.key)
    • CA Bundle (optional .pem)

If all validations pass, click Upload to complete the process.

⚠️ Note: Self-signed certificates are not supported. All certs must be valid, signed by a trusted Certificate Authority, and match the domain.

Step 6: Create Your HTTPS Redirect

Now that your certificate is uploaded:

  1. Go to Domains → Web Forwards.
  2. Create or edit a Web Forward record.
  3. Choose HTTPS as the destination type.
  4. Select the valid certificate you just uploaded.
  5. Your HTTPS redirect will go live globally within seconds once saved.

What Happens After You Upload the Certificate

Once all three files are uploaded and saved:

  1. The system validates the certificate:
    • It checks for expiration, proper formatting, domain name match, and revocation status (OCSP/CRL).
    • Wildcard and SAN certs are accepted if they match the target domain(s).
  2. If validation passes:
    • You can now configure HTTPS redirect rules (301/302) via the Web Forwarding section.
    • You’ll be able to define source-to-destination mappings, path forwarding, and query string preservation.
  3. If validation fails:
    • An error will be shown in the portal indicating what went wrong (e.g., cert mismatch, unsupported format).
    • You may re-upload corrected files.
  4. Redirects become globally live within seconds once saved successfully.

Related to

Was this article helpful?
0 out of 1 found this helpful
Return to top

Related articles