Letsencrypt SSL Installation for Hostname - How to guide
This is guide for cwp versions with autoSSL

In cwp.admin left menu go to --> CWP Settings --> Change Hostname save there your hostname.

SSL will be automatically installed, the only condition is that you have DNS A records set for the hostname.
If you don't have an A record for the hostname then CWP will install a self-signed certificate.
Please note that the hostname should be a subdomain and NOT the main domain.

For http:// to https:// redirect you can create this htaccess file:

RewriteEngine On
RewriteCond %{HTTPS} off
RewriteRule ^(.*)$ https://%{HTTP_HOST}%{REQUEST_URI} [L,R=301]

To disable redirect simply delete that file.

Manually or custom certificate
You can also manually replace certificate with your own certificate
ssl_certificate with bundle (if any): /etc/pki/tls/certs/hostname.bundle
ssl_certificate_key: /etc/pki/tls/private/hostname.key

Pure-FTPd PEM: /etc/pki/tls/private/hostname.pem
Note that .pem file needs to contain: key, cert, chain-certs

this certificate files are used for cwp ports 2031,2087,2302,2304,2096:
Admin panel, user panel, roundcube, phpMyAdmin, phpPgAdmin, cwp api