Enterprise Knowledge Centre
Technical intelligence for secure hosting, cloud and infrastructure operations.
Search practical guides, platform documentation, infrastructure references, security recommendations and operational best practices from K® (Kenzie) of SAUDI GULF HOSTiNG.
Press Enter or use Search to jump into the documentation categories.
Enterprise Knowledge Centre
Technical documentation designed for enterprise teams.
Browse implementation guides, deployment documentation, hosting knowledge, enterprise cloud architecture, cybersecurity resources, email platforms, compliance, infrastructure engineering and operational best practices from K® (Kenzie) of SAUDI GULF HOSTiNG.
Documentation Category
Frequency Asked Questions
Loading Image...
Logging into the Control Panel
Upon signing up with K® Kenzie of Saudi Gulf Hosting, a detailed mail containing your Control Panel login details is sent to your email address (Username).
Login from the K® Kenzie of Saudi Gulf Hosting Website (Anchor: website)
- Visit K® Kenzie of Saudi Gulf Hosting.
- On the top-right of the page, click the Login link.
- Enter your Username i.e., your email address and Password.
- Click the Login button to continue. Through this interface you can buy new products and services from K® Kenzie of Saudi Gulf Hosting.
Login from the Control Panel Login Area (Anchor: panel)
- Visit:
- Customer Login: http://manage.K® Kenzie of Saudi Gulf Hosting.com/login
- Reseller Login: http://manage.K® Kenzie of Saudi Gulf Hosting.com/reseller
- Enter your Username i.e., your Email Address and Password and click the Login button.
Reset Account Password (Anchor: reset)
In the event that you do not remember your current Password, you can have your Account Password reset.
- Click the Forgot Password link from the following URL:
- Customer Login: K® Kenzie of Saudi Gulf Hosting.com/forgot-password
- Reseller Login: manage.K® Kenzie of Saudi Gulf Hosting.com/forgot-password
- Enter your Username i.e., your Email Address and click the Send Reset Instructions button.
- This would send an email to your email address, containing a link through which you can reset your Control Panel Password.
Loading Image...
Changing Name Servers of a Domain Name
In order to host a website on your domain name, you will need to obtain the Name Servers from the Web Hosting company with whom you wish to host your website and point your domain name to these Name Servers.
To Modify Name Servers of your Domain Name
- Contact your Web Hosting Company and find out from them the Name Servers you need to use.
If you have purchased Web Hosting for your domain name through K® Kenzie of Saudi Gulf Hosting, then you need to set the Name Servers as specified by K® Kenzie of Saudi Gulf Hosting.Name Server Modification Related Errors
- Login to your Control Panel.1
- Search for the domain name and proceed to the Order Information view. 2
About Lock / Suspension
- Click the Name Servers link.
- Enter upto 13 Name Servers and click Update Name Servers.
Upon modifying your domain name's Name Servers, your website would begin appearing in a web browser, after about 24 to 48 hours (provided your Web Hosting package is properly setup and you have uploaded the content of your website). This is a standard time-frame required for a process called as DNS Propagation to complete Worldwide. This process is not controlled by any one ISP/company and therefore it can not be hastened.
Name Server Modification Related Errors
Name Server Caveats
Documentation Category
Domain Names
Loading Image...
How do I retrieve a list of packages via the API?
What is the K® Kenziei Reseller Hosting API?
The K® (Kenzie) Reseller API gives you access to all the features and functionality of StackCP, allowing you to create a hosting control panel from scratch or integrate external services such as WHMCS.
This is for advanced hosting resellers and the support we provide for the Reseller API is service-based only.
How to retrieve a list of packages via the API?
GET /package
An array of objects will be returned, the objects pertaining to current hosting packages held within the 20i account.
PHP examples use our API wrapper, which can be downloaded here: https://www.kgulfhosting.com.sa/kb/reseller/api
PHP
Request:
require_once "vendor/autoload.php"; //We specify the API wrapper location.
$bearer_token = "INSERT YOUR GENERAL API KEY"; //Your Kenziei API key.
$response = json_encode($services_api->getWithFields("/package"), JSON_PRETTY_PRINT);
print_r($response);
The response, shows a list of hosting packages and various other details about each package instance. For example, in the response, we can see the name and id of packages, the name of the package type the package is assigned-to, as well as any StackUsers assigned to those packages.
Everything You Need to Know About Domain Names
What This Category Covers
Your domain name is the foundation of your online identity, and understanding how it actually works helps you avoid common mistakes that can cause downtime, lost email, or unnecessary costs. This guide gives you the overview, with each linked article covering one topic in full depth.
Getting Started With a Domain
How to Register a New Domain Name covers the registration process from start to finish.
Moving a Domain You Already Own
Domain Transfers: Step by Step Guide covers moving a domain from another registrar to us.
Privacy and Protection
Understanding WHOIS Privacy Protection covers keeping your personal registration details out of public records.
Managing How Your Domain Points to Services
DNS Management: A/CNAME/MX/TXT Records Explained covers the records that control where your domain actually sends visitors and email.
Setting Up Domain Forwarding and Redirects covers pointing one domain to another.
Keeping Your Domain Active
Auto-Renewal: How It Works and How to Manage It covers avoiding accidental domain expiration.
Saudi Specific Requirements
.sa Domain Registration Requirements (Saudi-Specific) covers the additional requirements specific to .sa domains.
Understanding the Technical Side
Domain Name System (DNS) Propagation Explained covers why domain changes are not instant.
Getting Started
You can search and register a domain name directly, or continue through the articles in this category for a complete understanding first.
How to Register a New Domain Name
Before You Register
If you have not yet read Everything You Need to Know About Domain Names, it gives an overview of everything covered in this category.
Before searching for a domain, think through a few things first. Choose a name that is easy to spell, easy to say out loud, and closely reflects your business or brand. Decide which extension fits your needs, such as .com for broad international reach or .sa if you specifically want to signal a Saudi based business.
Searching for Availability
Use our domain name search tool to check whether your desired name is available. If your first choice is taken, the search tool typically suggests close alternatives or different extensions worth considering.
Registering Your Domain
Once you find an available name, add it to your order and provide your registration contact details, including your name, address, email, and phone number. These details are required by domain registration policy and, unless you enable privacy protection, may be publicly visible. See Understanding WHOIS Privacy Protection for more on this.
Choose your registration period, typically available in yearly increments, and complete your order.
What Happens After Registration
Once registered, your domain becomes active, though it will not automatically point anywhere until you configure its DNS settings or connect it to a hosting account. If you already have hosting with us, this connection is often set up automatically. See DNS Management: A/CNAME/MX/TXT Records Explained if you need to configure this manually.
Considering .sa Domains
If you are registering a domain specifically under the .sa extension, additional requirements apply beyond standard domain registration. See .sa Domain Registration Requirements (Saudi-Specific) before proceeding with a .sa registration.
Setting Up Auto-Renewal
To avoid accidentally losing your domain when its registration period ends, consider enabling auto-renewal at the time of registration. See Auto-Renewal: How It Works and How to Manage It for details on how this works.
Documentation Category
Enterprise Data Center Infrastructure
Our Enterprise Data Center Infrastructure: An Overview
Behind every website, email account, and application we host sits physical infrastructure engineered for reliability, security, and performance. This guide gives you the overview, with each linked article covering one topic in full depth.
Where We Operate
Data Center Locations and Regional Coverage covers where our facilities are located and what that means for your site's performance.
Reliability Commitments
Uptime Guarantees and SLA Explained covers what our reliability commitments actually mean in practice.
The Network Behind Your Site
Network Architecture: Redundancy, Peering and Global Edge covers how traffic actually reaches your site quickly and reliably.
Keeping Infrastructure Secure and Compliant
Physical Security and Compliance Standards covers how our facilities are protected and what standards they meet.
Keeping the Lights On
Power, Cooling and Disaster Recovery Systems covers the systems that keep infrastructure running through unexpected events.
Staying Informed
How We Handle Planned Maintenance and Status Updates covers how we communicate about scheduled work and incidents.
Saudi Specific Considerations
Data Residency and Saudi Regulatory Compliance covers how our infrastructure supports Saudi data residency and regulatory requirements.
Why This Matters to You
Understanding the infrastructure behind your hosting is not just technical curiosity. It directly affects your site's speed, your data's security, and your ability to meet your own compliance obligations to your customers.
Data Center Locations and Regional Coverage
Where your hosting infrastructure is physically located directly affects how quickly your website or application responds to visitors, and which regulatory requirements apply to your data.
If you have not yet read Our Enterprise Data Center Infrastructure: An Overview, it introduces everything covered in this category.
Our Saudi Arabia Presence
Our low latency data centers are located in Riyadh, Jeddah, and Dammam, positioning infrastructure close to Saudi Arabia's major population and business centers. This local presence reduces the physical distance data has to travel for visitors within the Kingdom, directly improving load times for a predominantly Saudi audience.
Our Broader Global Footprint
Beyond Saudi Arabia, our infrastructure extends across the GCC, the wider MENA region, and a global network spanning 42 data centers across six continents.
[INSERT: Specific list of additional data center regions and cities beyond Riyadh, Jeddah, and Dammam, confirmed against current infrastructure documentation]
Why Location Affects Your Site's Speed
When a visitor requests your website, data travels between their device and the server hosting your site. The greater the physical distance, the more time that round trip takes, adding to your site's overall load time. Choosing hosting infrastructure with data centers positioned close to your actual visitor base directly improves the experience for those visitors.
Choosing the Right Region for Your Business
If the majority of your visitors are located within Saudi Arabia or the broader GCC region, our regional data centers provide a meaningful performance advantage over infrastructure located further away. For businesses with a genuinely global visitor base, our wider international footprint helps maintain reasonable performance across regions rather than concentrating entirely on one geography.
How This Connects to Data Residency
For businesses with specific requirements around where their data is physically stored, particularly relevant for Saudi government aligned organizations and regulated industries, see Data Residency and Saudi Regulatory Compliance for how our regional presence supports these requirements.
Uptime Guarantees and SLA Explained
An uptime guarantee is one of the most important, and most misunderstood, commitments a hosting provider makes. Understanding what a specific percentage actually means in real terms helps you evaluate whether a guarantee genuinely fits your business's tolerance for downtime.
Our Current Uptime Commitment
[INSERT: Confirm the current official uptime guarantee percentage, since multiple different figures have appeared across different parts of the site, and this article should state the single accurate current commitment]
What an Uptime Percentage Actually Means
Uptime percentages sound similar at first glance, but small differences translate into meaningfully different amounts of actual downtime. A 99.9 percent guarantee allows for a small amount of downtime spread across a year, roughly a few hours. A 99.99 percent guarantee allows for far less, closer to under an hour across a full year. Each additional nine in the percentage represents a substantial reduction in acceptable downtime, not a small incremental improvement.
How Uptime Is Measured
Uptime is generally measured as the percentage of time infrastructure is available and functioning correctly over a defined period, commonly monthly or annually. What specifically counts as downtime, and what exceptions may apply, such as planned maintenance windows, are usually defined clearly within the specific service level agreement rather than left to interpretation.
What an SLA Actually Guarantees
A service level agreement is a formal, contractual commitment defining the specific uptime standard and often the support response times your provider commits to. Unlike a general marketing claim about reliability, an SLA gives you a measurable, contractual standard, along with a defined remedy, often service credits, if that standard is not met in a given period.
Planned Maintenance and Uptime
Scheduled maintenance windows are typically excluded from uptime calculations, since this planned, communicated downtime is treated differently from an unexpected outage. See How We Handle Planned Maintenance and Status Updates for how we communicate these windows in advance.
Enterprise Customers and Custom SLAs
Enterprise hosting customers with specific reliability requirements can often discuss SLA terms more specifically suited to their business needs, rather than relying solely on our standard published commitment. Speak with our team if your business requires a formally documented SLA with terms specific to your operations.
What Redundancy Contributes to Uptime
A high uptime commitment is only achievable through underlying infrastructure designed for redundancy. See Network Architecture: Redundancy, Peering and Global Edge for how our network is built to minimize single points of failure.
Documentation Category
Web Hosting
Loading Image...
What Is Shared Hosting and Who Is It For?
Shared hosting means your website lives on the same physical server as many other websites, all splitting the same CPU, memory, and storage resources. Because the cost of the server is spread across so many customers, shared hosting is the most affordable way to get a website online.
How It Works
When you sign up for shared hosting, we handle the server setup, security patching, and hardware maintenance entirely on our side. You get access to your own control panel, your own file space, and your own email accounts, but the underlying server itself is shared with other customers.
Who Shared Hosting Is Right For
Shared hosting is a strong fit if any of the following describe your situation:
- You are launching your first website and want to keep costs low while you find your footing.
- Your site is mostly informational, such as a small business brochure site, a portfolio, or a blog with moderate traffic.
- You do not need root access or the ability to install custom server software.
- You expect a few hundred to a few thousand visitors per month, not sudden traffic spikes.
When You Should Consider Something Else
If your site runs an online store with real transaction volume, if you are running a member platform with a lot of database activity, or if you need guaranteed resources that other customers cannot affect, it is worth reading Shared vs. Business Hosting: Key Differences or looking at What Is VPS Hosting and When Do You Need It?
Getting Started
Once you choose a shared hosting plan, your welcome email will include your control panel login. From there you can upload your website files, create email accounts, and set up databases. If you are moving from another host, see Migrating Your Website to K Kenzie Hosting for a step by step walkthrough.
Loading Image...
Shared vs. Business Hosting: Key Differences
Shared Hosting and Business Hosting at a Glance
Shared hosting and business hosting often look similar on the surface. Both give you a control panel, both host your site alongside other customers on the same server, and both are priced well below VPS or dedicated options. If you have not yet read What Is Shared Hosting and Who Is It For?, start there for the basics.
The real differences show up in resource guarantees, performance, and support priority.
Resource Allocation
On a standard shared hosting plan, resources are allocated on a best effort basis. Business hosting plans reserve a guaranteed minimum of CPU and memory for your account specifically, so a traffic spike on another customer's site sharing your server has far less impact on your own site's performance.
Performance Features
Business hosting plans typically include faster storage, priority caching, and in many cases a content delivery network included at no extra cost. If your site's loading speed affects your revenue or your search rankings, this difference matters more than the price gap suggests.
Support Priority
Support tickets from business hosting accounts are generally handled with a higher priority queue than standard shared hosting tickets. If uptime and fast resolution matter to your operations, this is worth factoring into your decision.
Which One Should You Choose
If you are running a personal blog, a small portfolio, or a site where a few minutes of slower performance during a traffic spike would not meaningfully hurt your business, shared hosting is the more economical choice. If your website generates revenue directly, represents your brand to paying customers, or simply cannot afford unpredictable slowdowns, business hosting is worth the incremental cost.
For sites that have outgrown either option entirely, see What Is VPS Hosting and When Do You Need It?
Migrating Your Website to K Kenzie Hosting
Before You Start
Moving your website from another host can feel risky, but with the right sequence of steps, your site can move over with zero downtime and no lost data.
Before You Start
Take a full backup of your current site's files and database from your existing host before making any changes. Even if your current host offers automated backups, download a manual copy yourself so you have it on hand throughout the migration.
Make a note of your current DNS settings, particularly any custom records beyond the basics, such as email routing and subdomains pointing to third party services.
Step by Step Migration
Step 1: Set up your new hosting account. Once your plan is active, you will receive control panel login details in your welcome email.
Step 2: Upload your website files. Use your control panel's File Manager, or connect via FTP, to upload your site's files to the new server. See Managing Files via cPanel File Manager for a full walkthrough.
Step 3: Migrate your database. Export your database from your old host, then import it into a newly created database on your new hosting account. See Creating and Managing MySQL Databases in cPanel.
Step 4: Test before switching DNS. Most control panels let you preview your new site using a temporary URL or by editing your local computer's hosts file, so you can confirm everything works correctly before your domain's visitors are pointed to the new server.
Step 5: Update your DNS. Once you have confirmed the new site works correctly, update your domain's DNS records to point to your new hosting account. See DNS Management: A/CNAME/MX/TXT Records Explained if you need a refresher on what each record type does.
Step 6: Monitor after the switch. DNS changes can take time to fully propagate across the internet. During this window, keep your old hosting account active so there is no gap in service while visitors gradually reach the new server.
After Migration
Once your site has been fully live on the new server for a few days with no issues, you can safely cancel your old hosting account. Keep your final backup on hand for at least a few weeks as a safety net.
Documentation Category
Control Panels — cPanel & Plesk
cPanel vs. Plesk: Which Control Panel Is Right for You?
What a Control Panel Actually Does
A control panel is the interface you use to manage your hosting account day to day, without needing to type server commands directly. It is where you upload files, create email accounts, manage databases, install applications, and monitor your account's resource usage. cPanel and Plesk are the two most widely used control panels, and most of what you need to do is achievable in either one, just with a different layout and workflow.
cPanel Overview
cPanel is the more widely recognized control panel, particularly common on Linux hosting environments. Its interface is organized around clearly labeled icons grouped by function, such as files, databases, email, and domains. If you are new to managing hosting, see cPanel Basics: First Login Walkthrough to get oriented.
Plesk Overview
Plesk runs on both Linux and Windows environments, making it the more flexible choice if you need to manage hosting across both operating systems from a single familiar interface. Its layout is organized somewhat differently from cPanel, favoring a sidebar navigation structure. See Plesk Basics: First Login Walkthrough if Plesk is new to you.
Comparing the Two Directly
Both control panels support the core tasks most hosting customers need, including file management, email account creation, database management, and application installation. The meaningful differences tend to show up in interface preference, Windows compatibility, since Plesk supports Windows Server environments and cPanel does not, and specific advanced features that vary between the two. See Plesk vs. cPanel: Feature Comparison Table for a detailed side by side breakdown.
Common Tasks in Either Panel
Regardless of which control panel your hosting plan uses, you will likely need to complete similar tasks. These include:
- Managing Files via cPanel File Manager
- Creating and Managing MySQL Databases in cPanel
- Setting Up Email Accounts in cPanel
- cPanel Backup and Restore Guide
- Installing WordPress via Softaculous/Installatron
- Managing DNS Zones in cPanel/Plesk
If Something Goes Wrong
Both control panels occasionally show error messages that can be confusing without context. See Common cPanel/Plesk Error Messages Explained if you run into an unfamiliar error.
Which One Do You Actually Have
Your hosting plan determines which control panel you use, generally decided by whether you chose Linux/cPanel hosting or a Windows based plan using Plesk. If you are unsure which one your account uses, check your welcome email or contact support.
cPanel Basics: First Login Walkthrough
Before You Log In
If you have not yet read cPanel vs. Plesk: Which Control Panel Is Right for You?, it gives useful context on what a control panel does before diving into cPanel specifically.
Your welcome email includes your cPanel login URL, your username, and your initial password. Keep this email accessible until you have successfully logged in and changed your password.
Logging In for the First Time
Enter the login URL from your welcome email into your browser. This typically opens a login screen asking for your username and password. Enter the credentials exactly as provided, since these fields are usually case sensitive.
Once logged in, change your password immediately to something you control and have not used elsewhere. This option is typically found under a security or password section, often labeled Password and Security.
Understanding the Layout
cPanel organizes its features into labeled sections, generally including Files, Databases, Domains, Email, Security, and Software. Each section groups related tools together, so once you know which section a task belongs to, finding the specific tool becomes straightforward.
Where to Go for Common Tasks
For uploading or managing your website files, look under the Files section, specifically File Manager. See Managing Files via cPanel File Manager for a full walkthrough.
For setting up a database for your website, look under the Databases section. See Creating and Managing MySQL Databases in cPanel.
For creating email accounts tied to your domain, look under the Email section. See Setting Up Email Accounts in cPanel.
Checking Your Account Resources
Most cPanel interfaces display a summary of your account's resource usage, including disk space and bandwidth, typically visible on the main dashboard or sidebar. Checking this periodically helps you notice if you are approaching your plan's limits before it becomes a problem.
Getting Comfortable
cPanel's layout remains consistent across most of its features, so once you are comfortable navigating one section, the others tend to follow a similar logic. If you get stuck on a specific task, our support team can help point you to the right section.
Managing Files via cPanel File Manager
What File Manager Does
File Manager is cPanel's built in tool for uploading, editing, organizing, and managing your website's files directly through your browser, without needing a separate FTP application. If you have not yet read cPanel Basics: First Login Walkthrough, it covers how to reach File Manager from your main cPanel dashboard.
Understanding the Folder Structure
Most websites are stored inside a folder called public_html, which represents the root of your website as visitors see it. Files placed directly inside public_html are accessible at your main domain, while subfolders correspond to subdirectories on your site.
If you host multiple domains or subdomains on the same account, each may have its own dedicated folder, so it is worth confirming which folder corresponds to which domain before uploading files.
Uploading Files
Navigate to the correct folder for your website, then use the Upload option, typically found in the top toolbar. You can select multiple files at once, and File Manager will show upload progress for each. For larger sites with many files, uploading a compressed zip file and extracting it directly within File Manager is often faster than uploading individual files one at a time.
Editing Files Directly
File Manager includes a built in code editor, allowing you to make quick edits to files like configuration files or simple HTML pages without downloading them first. Right click any editable file and look for an Edit or Code Editor option. For substantial changes, it is generally safer to edit files locally and re upload them, keeping a backup of the original in case something needs to be reverted.
Setting File Permissions
Occasionally, an application will require specific file permissions to function correctly, commonly referenced as numeric values such as 644 for files or 755 for folders. File Manager allows you to change these through a Permissions option, usually accessible via right click on the file or folder in question. Avoid setting permissions more permissive than necessary, since overly open permissions can create security risks.
Compressing and Extracting Files
File Manager supports both compressing files into a zip archive and extracting an uploaded zip archive directly on the server. This is particularly useful when migrating a website, since uploading one compressed file is typically much faster than many individual files.
Common Issues
If an uploaded file does not appear where expected, confirm you uploaded it into the correct domain's folder rather than a different domain or subdomain folder on the same account. If a website shows a permissions error after uploading, review the file and folder permissions as described above.
Documentation Category
SSL Certificates
SSL Certificates Explained: DV, OV and EV Compared
What This Category Covers
SSL certificates are one of the most misunderstood parts of running a website, largely because there are several different types, each suited to different needs. This guide gives you the overview, with each linked article covering one topic in full depth.
The Basics
Every website handling any form of visitor data should have an SSL certificate installed. See What Is an SSL Certificate and Why Every Site Needs One if you are starting from the very beginning.
The Three Validation Types
Domain Validation (DV) SSL: Fast Setup Guide covers the fastest, most affordable option, confirming only that you control the domain itself.
Organization Validation (OV) SSL: Requirements and Setup covers certificates that also verify your business's legal existence.
Extended Validation (EV) SSL: The Green Bar Explained covers the highest level of verification, historically shown with special browser indicators.
Certificates for Multiple Domains
If you manage more than one domain or subdomain, Wildcard SSL Certificates: When You Need One and Multi-Domain (SAN) SSL Certificates Explained cover your options for covering multiple sites under one certificate.
Getting a Certificate Installed
Generating a CSR (Certificate Signing Request) and Installing an SSL Certificate on cPanel/Plesk walk through the actual technical process of getting a certificate live on your site.
Keeping Your Certificate Valid
SSL Certificate Renewal: Avoiding Expiration Downtime and Troubleshooting "Not Secure" Browser Warnings cover the ongoing maintenance side of SSL, and what to do when something goes wrong.
Free or Paid
Free Let's Encrypt SSL vs. Paid SSL: Key Differences helps you decide whether a free certificate meets your needs or whether a paid option makes more sense for your situation.
Ready to Get Started
You can review our SSL certificate options directly, or continue through the articles in this category for a complete understanding before choosing.
What Is an SSL Certificate and Why Every Site Needs One
What SSL Actually Does
An SSL certificate encrypts the connection between your website and its visitors, ensuring that any data exchanged, such as login details, payment information, or contact form submissions, cannot be intercepted and read by a third party while in transit. Without SSL, this data travels in plain text, readable by anyone positioned to intercept it.
If you have not yet read SSL Certificates Explained: DV, OV and EV Compared, it gives an overview of the different certificate types covered throughout this category.
How You Can Tell a Site Has SSL
A site with a properly installed SSL certificate displays a padlock icon in the browser's address bar, and its address begins with https rather than http. Modern browsers actively flag sites without SSL as Not Secure, which visitors increasingly recognize as a warning sign.
Why Every Site Needs One, Not Just Stores
It is a common misconception that SSL only matters for websites processing payments. In reality, any site with a login form, a contact form, or any field collecting visitor information benefits from encryption. Beyond data protection, search engines factor SSL into ranking considerations, and browsers display increasingly prominent warnings on sites without it, which can noticeably affect visitor trust and conversion rates regardless of what your site actually does.
The Trust Signal Beyond Encryption
Beyond the technical encryption itself, SSL certificates serve as a visible trust signal to visitors. A site displaying the padlock icon signals a baseline level of legitimacy and care, while a site flagged as Not Secure can cause visitors to leave before ever engaging with your content.
Choosing the Right Certificate Type
Not all SSL certificates provide the same level of verification. See Domain Validation (DV) SSL: Fast Setup Guide for the fastest and most common option, or explore the fuller comparison in the category hub if your business has more specific verification needs.
Getting Started
Once you understand which certificate type fits your needs, the next step is generating a certificate signing request and installing your certificate. See Generating a CSR (Certificate Signing Request) to begin that process, or explore our SSL certificate options directly.
Domain Validation (DV) SSL: Fast Setup Guide
What Domain Validation Confirms
A Domain Validation certificate, commonly referred to as DV SSL, confirms only that you control the domain the certificate is being issued for. It does not verify any information about the business or individual behind the domain. This makes it the fastest and most affordable certificate type to obtain.
If you have not yet read What Is an SSL Certificate and Why Every Site Needs One, it covers why encryption matters before diving into this specific certificate type.
Why Speed Is the Main Advantage
Because DV certificates only require proving domain ownership, the verification process is typically automated and can complete within minutes, compared to the more involved documentation required for higher validation levels. This makes DV certificates well suited to situations where you need a certificate active quickly.
Who DV SSL Is Right For
DV SSL is a strong fit for personal websites, blogs, small business sites without ecommerce transactions, and any site where basic encryption is the priority without a specific need to display verified business identity to visitors. It is also commonly used for internal tools, staging environments, and development sites.
The Verification Process
Verification for a DV certificate typically happens through one of a few methods. Email verification sends a confirmation link to an address associated with the domain. DNS verification requires adding a specific record to your domain's DNS zone. File verification requires uploading a specific file to your website that the certificate authority checks for. Your hosting provider or certificate authority will specify which method applies to your specific order.
What DV SSL Does Not Provide
A DV certificate confirms domain control only, not the legitimacy or identity of the business operating the site. For businesses wanting to visibly demonstrate verified organizational identity to visitors, particularly relevant for ecommerce or financial services, see Organization Validation (OV) SSL: Requirements and Setup.
Installing Your Certificate
Once issued, installing a DV certificate follows the same general process as other certificate types. See Generating a CSR (Certificate Signing Request) and Installing an SSL Certificate on cPanel/Plesk for the full installation walkthrough.
Free Alternative
If cost is your primary concern and DV level verification meets your needs, see Free Let's Encrypt SSL vs. Paid SSL: Key Differences to understand whether a free certificate is a suitable option for your situation.
Documentation Category
Email Hosting
Business Email Hosting: Complete Setup and Management Guide
What This Category Covers
Reliable business email is often taken for granted until something breaks. This guide gives you the overview, with each linked article covering one topic in full depth.
Getting Started
Choosing an Email Hosting Plan for Your Business covers picking the right plan for your team size and needs.
Setting Up Email on Outlook, Apple Mail and Gmail (Client Config) covers connecting your email to the apps you actually use daily.
Protecting Your Email
Understanding SPF, DKIM and DMARC (Email Authentication) covers the technical standards that keep your email out of spam folders and prevent impersonation.
MimeCast Email Security: What It Does and Why It Matters covers advanced threat protection for your inbox.
Managing Your Mailboxes
Email Storage and Mailbox Size Management covers keeping your mailboxes running smoothly as they fill up.
Setting Up Email Forwarding and Auto-Responders covers routing and automatic reply features.
When Things Go Wrong
Troubleshooting Email Delivery and Spam Issues covers diagnosing why email is not arriving as expected.
Moving or Expanding
Migrating Email Accounts to a New Provider covers switching providers without losing mail.
Shared Mailboxes and Distribution Lists Explained covers team based email setups.
Getting Started
You can explore Barid Email Hosting plans directly, or continue through the articles in this category first.
Setting Up Email on Outlook, Apple Mail and Gmail (Client Config)
Before You Start
Once your business email account is created, you will want to connect it to the email application your team actually uses daily, whether that is Outlook, Apple Mail, Gmail, or another client. If you have not yet read Choosing an Email Hosting Plan for Your Business, it covers selecting a plan before this article covers connecting to it.
You will need your full email address, your email password, and your incoming and outgoing mail server settings, which are typically provided in your welcome email or accessible through your email hosting control panel.
Setting Up Outlook
Open Outlook and navigate to the option for adding a new account, typically found under File and Account Settings. Enter your full email address, then choose manual setup rather than automatic configuration if prompted, since this gives you more direct control over entering the correct server settings. Enter your incoming and outgoing server addresses, port numbers, and encryption settings exactly as provided, along with your email address as the username and your password.
Setting Up Apple Mail
Open Apple Mail and navigate to Mail preferences, then Accounts, and select the option to add a new account. Choose to add an account manually rather than through the built in provider list, since your business email is not one of the pre configured options. Enter your email address and password, then provide the incoming and outgoing server details exactly as given in your account setup information.
Setting Up Gmail to Send and Receive From Your Business Address
Gmail can be configured to both send and receive mail using your business email address, even while using Gmail's interface. Under Gmail settings, look for Accounts and Import, then options to add another email address you own, and to check mail from other accounts. You will need your incoming and outgoing server details, along with your email credentials, entered during this setup process.
Common Connection Issues
If your email client shows an authentication error, double check your password was entered exactly correctly, since a small typo is the most common cause. If messages send but do not arrive, or arrive but cannot be sent, confirm your incoming and outgoing server settings, including port numbers and encryption type, match exactly what was provided, since a mismatch on either side can cause one direction to fail while the other works correctly.
Setting Up on Mobile Devices
Most mobile email apps follow a similar manual setup process to desktop clients, requiring the same incoming and outgoing server details. If your mobile device offers an automatic setup option specifically for business or corporate email, this often simplifies the process while still using the same underlying server information.
Keeping Your Settings Documented
Once successfully configured, keep a record of your exact server settings on file, since you may need them again when setting up a new device or troubleshooting a future connection issue.
Understanding SPF, DKIM and DMARC (Email Authentication)
Why Email Authentication Matters
Without proper authentication, it is relatively easy for someone to send email that appears to come from your domain without actually being sent by you, a technique commonly used in phishing and spam. SPF, DKIM, and DMARC are three related standards that work together to prevent this and improve the likelihood your legitimate email reaches the inbox rather than the spam folder.
If you have not yet read DNS Management: A/CNAME/MX/TXT Records Explained, it covers the TXT record type these standards are built on.
What SPF Does
SPF, short for Sender Policy Framework, is a DNS record listing which mail servers are authorized to send email on behalf of your domain. When a receiving mail server gets a message claiming to be from your domain, it checks the SPF record to confirm the sending server is actually on the authorized list. If it is not, the message is more likely to be flagged as spam or rejected outright.
What DKIM Does
DKIM, short for DomainKeys Identified Mail, adds a digital signature to outgoing email, generated using a private key that only your mail server has access to. Receiving servers can verify this signature against a public key published in your DNS records, confirming the message genuinely originated from your domain and was not altered in transit.
What DMARC Does
DMARC, short for Domain based Message Authentication Reporting and Conformance, builds on top of SPF and DKIM by telling receiving mail servers what to do when a message fails either check, such as rejecting it outright, marking it as spam, or simply monitoring and reporting without taking action. DMARC also provides reporting, giving you visibility into who is sending email using your domain, including any unauthorized attempts.
How These Three Work Together
SPF and DKIM each provide a different method of verifying legitimacy, and DMARC ties them together with an enforcement policy, telling receiving servers how strictly to act on failures. Having all three properly configured significantly improves both your email deliverability and your protection against domain impersonation.
Setting These Up
Each of these standards is implemented as a specific TXT record added to your domain's DNS settings. See Managing DNS Zones in cPanel/Plesk for where to add these records within your control panel. The exact record values are typically provided by your email hosting provider and should be entered precisely as given, since even small errors can cause authentication to fail.
Verifying Your Setup
After adding these records, several free online tools allow you to check whether SPF, DKIM, and DMARC are correctly configured and passing for your domain. It is worth verifying this after initial setup and periodically afterward, particularly if you add a new email sending service that also needs to be authorized.
If You Are Having Deliverability Issues
If your legitimate email is landing in recipients' spam folders, missing or misconfigured authentication records are one of the most common underlying causes. See Troubleshooting Email Delivery and Spam Issues for a broader look at diagnosing delivery problems.
Documentation Category
Cybersecurity
Enterprise Cybersecurity: Protecting Your Digital Infrastructure
What This Category Covers
Security is not a single feature you enable once, it is an ongoing set of practices across your infrastructure, applications, and team behavior. This guide gives you the overview, with each linked article covering one topic in full depth.
Protecting Against Attacks
[PENDING LINK: "Understanding DDoS Protection and Mitigation", will link once that article exists] covers defending against traffic based attacks aimed at taking your site offline.
[PENDING LINK: "Web Application Firewalls (WAF) Explained", will link once that article exists] covers filtering malicious requests before they reach your application.
Responding to Threats
[PENDING LINK: "Malware Scanning and Removal: What to Do If You Are Infected", will link once that article exists] covers identifying and cleaning up a compromised site.
[PENDING LINK: "Incident Response: What Happens If You Are Breached", will link once that article exists] covers what to do in the immediate aftermath of a security incident.
Strengthening Access Control
[PENDING LINK: "Two Factor Authentication (2FA) Setup Guide", will link once that article exists] covers adding a critical extra layer of login security.
Platform Specific Security
If you are running WordPress specifically, see [INTERNAL LINK: "WordPress Security Hardening Checklist", link to this article using its slug wordpress-security-hardening-checklist] for a dedicated checklist covering that platform.
Compliance and Standards
[PENDING LINK: "Understanding ISO Certification and What It Means for You", will link once that article exists] covers what our certifications actually guarantee.
[PENDING LINK: "GDPR, CCPA and PDPL Compliance: What Website Owners Need to Know", will link once that article exists] covers the major data protection regulations relevant to your business.
Getting Started
Security is worth taking seriously proactively rather than reactively. Continue through the articles in this category to build a fuller understanding of how to protect your infrastructure.
Understanding DDoS Protection and Mitigation
What a DDoS Attack Actually Is
A distributed denial of service attack, commonly called DDoS, floods a website or server with an overwhelming volume of traffic from many sources simultaneously, aiming to exhaust its resources and make it unavailable to legitimate visitors. Unlike a single source attack, the distributed nature makes DDoS traffic harder to block by simply denying one source, since the traffic originates from many different locations at once.
If you have not yet read [INTERNAL LINK: "Enterprise Cybersecurity: Protecting Your Digital Infrastructure", link to this article using its slug enterprise-cybersecurity-overview], it gives an overview of everything covered in this category.
Why Businesses Get Targeted
DDoS attacks are launched for various reasons, including competitive sabotage, extortion attempts demanding payment to stop an ongoing attack, activism directed at a specific business or cause, or simply as a distraction tactic while a separate attack is attempted elsewhere against the same target. Any business with an online presence is a potential target, regardless of size or industry.
How DDoS Protection Works
DDoS protection systems continuously monitor incoming traffic patterns, identifying and filtering out malicious traffic before it reaches your actual server, while allowing legitimate visitor traffic through largely unaffected. This filtering typically happens at a network level positioned in front of your infrastructure, absorbing and analyzing traffic before it ever reaches the server itself.
Signs You May Be Experiencing a DDoS Attack
A sudden, dramatic spike in traffic that does not correspond to any marketing activity or expected event, your website or application becoming slow or entirely unresponsive without an obvious cause, and unusual traffic patterns such as requests concentrated on a single page or resource are all potential indicators worth investigating.
What to Do If You Suspect an Attack
Contact our support team immediately if you suspect you are experiencing a DDoS attack, since mitigation is most effective when addressed quickly. Avoid making unrelated changes to your infrastructure during a suspected attack, since this can complicate diagnosing and addressing the actual issue.
Protection Included With Your Hosting
Our infrastructure includes DDoS protection as part of our broader network architecture, designed to absorb and filter attack traffic before it affects your specific hosting environment. The specific level of protection can vary by hosting tier, and enterprise customers with particularly high risk profiles may benefit from discussing additional dedicated protection measures with our team.
Reducing Your Overall Risk
While DDoS protection at the infrastructure level handles the bulk of this risk, keeping your own applications and plugins updated, since some attacks specifically exploit known application vulnerabilities alongside pure traffic flooding, adds an additional layer of resilience beyond network level protection alone.
Web Application Firewalls (WAF) Explained
What a WAF Actually Does
A web application firewall, commonly called a WAF, inspects incoming traffic to your website or application, filtering out malicious requests before they reach your actual code. Unlike a traditional network firewall, which primarily controls access based on ports and protocols, a WAF specifically understands web application traffic and can identify attack patterns within that traffic itself.
If you have not yet read [INTERNAL LINK: "Understanding DDoS Protection and Mitigation", link to this article using its slug understanding-ddos-protection], it covers a related but distinct type of protection focused on traffic volume rather than malicious request content.
Types of Attacks a WAF Helps Prevent
SQL injection attempts, where an attacker tries to manipulate a database query through malicious input in a form field, are commonly filtered by a properly configured WAF. Cross site scripting attempts, where malicious code is injected into a page viewed by other users, are similarly identified and blocked. A WAF can also filter known bad bot traffic and other automated attack patterns before they reach your application.
How a WAF Differs From Application Level Security
A WAF operates as a protective layer positioned in front of your application, catching many attack attempts before they ever reach your actual code. This does not replace the need for secure coding practices and keeping your application's own software updated, but it adds a meaningful additional layer of defense, particularly valuable for catching attacks against known vulnerability patterns even before an application specific patch is available.
Rule Based Filtering
WAFs typically operate using a set of rules defining what patterns of traffic are considered suspicious or malicious. These rule sets are regularly updated to account for newly discovered attack techniques, meaning a WAF's protection improves over time without requiring manual configuration changes on your part for most standard threats.
False Positives and Fine Tuning
Occasionally, a WAF's rules may flag legitimate traffic as suspicious, particularly for applications with unusual input patterns that resemble attack signatures without actually being malicious. If you notice legitimate functionality being blocked, this can typically be addressed by fine tuning specific rules for your application, worth raising with our support team if you encounter this.
Is a WAF Included With Your Hosting
WAF protection is often included as part of broader security infrastructure, with the specific level of protection and customization available varying by hosting tier. If your application handles particularly sensitive data or has previously been targeted by attacks, it is worth discussing enhanced WAF configuration specifically suited to your application with our team.
WAF Protection Is Not a Complete Solution
While a WAF meaningfully reduces your exposure to common attack patterns, it works best as one layer within a broader security approach, alongside keeping your own software updated and following secure practices in how your application itself is built and maintained.