Cannot install ssl certificate

[screege]

Hi I am trying to renew my sll certificate via tustwave (which was xramp) as I have done everytime, purchase the certificate thru whm and install it, the thing is my certicate is issued and when clicking on the submit button to install it whm gives me this error:

Sorry, you must have a dedicated ip to use this feature for the user: sgx! If you are intending to install a shared certificate you must use the username "nobody" for security and bandwidth reporting reasons.
SSL Install aborted due to error.


If I put the user nobody the it gives me this error:

Modulus mismatch, key file does not match certificate. Please use the correct key file

and shows me both the key and crt file.

Can anyone please help me?

Thank you

[screege]

Never mind posted the .key that cpanel sent me and user nobody on user and it installed.

Thanks anyway

[avera]

I had this problem too.

Just for a heads up for anyone else having this problem. - I think that cpanel caches any old ssl keys you have had on your server. It's important that when you are installing your ssl, you use the key that whm/cpanel sent you by email.

Don't make the same mistake I did and assume that cpanel/whm will use the correct key - it doesn't.

[imaginarynumber]

I had this problem too.

Just for a heads up for anyone else having this problem. - I think that cpanel caches any old ssl keys you have had on your server. It's important that when you are installing your ssl, you use the key that whm/cpanel sent you by email.

Don't make the same mistake I did and assume that cpanel/whm will use the correct key - it doesn't.

Thanks Avera

I kept getting mismatches until I followed your advice and pasted the key in manually

[cPanelMichael]

Hello

I would like to point out that we do not recommend installing SSL certificates on the "nobody" username. Ideally, you should obtain a dedicated IP address to ensure the certificate is installed properly. If you decide to install a certificate using the "nobody" username for one of your domain names, you should complete the following steps to ensure your domain name functions properly when using SSL:

1. Install the certificate using the "nobody" username
2. Edit the SSL file (ie: domain.com_SSL) for the domain name under /var/cpanel/userdata/nobody changing "nobody" to the username (for both group: and user: )
3. Move the file to /var/cpanel/userdata/username and delete the .cache file
4. Remove the domain from /var/cpanel/userdata/nobody/main
5. Run /scripts/rebuildhttpdconf

Thank you.

[cPanelTristan]

Additionally, you may well need to edit the homedir and documentroot fields to be that of the domain in the domain.com_SSL file.

For homedir, it should be /home/username for the cPanel account (where username is the cPanel username. For documentroot, it should be /home/username/public_html/pathtodomain for the domain being used where you only add pathtodomain if it is a subdomain or addon domain. If it is the account's main domain, simply using /home/username/public_html would be the correct path.

[OcalaDesigns]

Hello

I would like to point out that we do not recommend installing SSL certificates on the "nobody" username. Ideally, you should obtain a dedicated IP address to ensure the certificate is installed properly. If you decide to install a certificate using the "nobody" username for one of your domain names, you should complete the following steps to ensure your domain name functions properly when using SSL:

1. Install the certificate using the "nobody" username
2. Edit the SSL file (ie: domain.com_SSL) for the domain name under /var/cpanel/userdata/nobody changing "nobody" to the username (for both group: and user: )
3. Move the file to /var/cpanel/userdata/username and delete the .cache file
4. Remove the domain from /var/cpanel/userdata/nobody/main
5. Run /scripts/rebuildhttpdconf

Thank you.

You don't recommend using 'nobody' but whm forces you to install the ssl this way?? Why?

I have a dedicated IP for the user, and it still states "SSL install aborted due to error: Sorry, you must have a dedicated ip to use this feature for the user: MYUSERNAME! If you are intending to install a shared certificate you must use the username "nobody" for security and bandwidth reporting reasons."

Then I do it using 'nobody' and it works, but then I have to go and follow all the other instructions to make work under the user name?? Is this a flaw in the system or am I doing something wrong?

[cPanelTristan]

The current system requires a dedicated IP to install an SSL onto a cPanel account. While we are working on a system for SSL certificates to be installed as wildcards in the future without the user nobody being required, the current system does indeed function the way you are describing.