Install a SSL Certificate and Setup the Domain

**BFF** · 08-26-2008 01:20 PM

Hi,
I've a very recently setup WHM Cpanel server.
WHM 11.23.2 cPanel 11.23.6-R26829
CENTOS Enterprise 5.2 i686 on standard - WHM X v3.1.0

I only have (and want) one domain on it. I can generate an SSL certificate for mydomain.co.uk. When I try the "Install a SSL Certificate and Setup the Domain" I get an error:
Sorry, you must have a dedicated ip to use this feature!
SSL Install aborted due to error.

This is not a VDS it's a dedicated server. I have an IP for myself, but WHM doesn't seem to think so.

I have server.mydomain.co.uk as the hostname, in the one DNS zone.
I can connect to only https://server.mydomain.co.uk:2087/ securely.
Everything else refuses to connect (securely), even https://server.mydomain.co.uk:2083/
But http://mydomain.co.uk or http://cpanel.mydomain.co.uk etc. work perfectly.

Any advice would be appreciated. Thanks.

**JayLevine** · 08-27-2008 03:49 AM

Sounds to me like you have your domain setup on the shared IP for the server.

I think you'll have to move the domain/account to its own IP address.

That would be a dedicated IP address.

Jay

**BFF** · 08-27-2008 07:30 AM

I follow, but what I can't understand is why I can't even use a wrong certificate to reach anything other than port :2087

If I go in with the IP address http://myIP:2087 itworks, but http://myIP:2082 (for cpanel?) wont work. [correction, it's https://myIP:2083 that wont work.]

Going back to "Installing SSL Certificate" If I try and install one for the hostname (server.mydomain.co.uk) I get this error:
The specified domain is not configured on the system.

It is the hostname and it is in the DNS (with an A record) of my mydomain.co.uk.

So is moving my domain onto a new IP the only way to install a Certificate that can be then shared?

**ralphlw** · 08-27-2008 09:22 AM

I have this very same issue. I have always been able to install to the shared ip of the server just sometimes the ssl doesn't work and brings up the first set up domain name, which I'm fine with. I should be able to install an ssl on the shared ip of the server.

**cpanelkenneth** · 08-27-2008 10:04 AM

This is a change made in 11.23.6. The "Install SSL" function in WHM will only allow installing SSL Certificates on cPanel account domains that have a dedicated IP Address. The Shared IP address is not considered a dedicated IP Address.

One can still install a SSL Certificate for user nobody on arbitrary domains.

An aside: managing SSL Certificates for the cPanel/WHM/Webmail ports is done with a different interface.

**BFF** · 08-27-2008 11:38 AM

I set up the host name as server.mydomain.co.uk before making the account for mydomain.co.uk. Would that explain why I can only connect securly to port 2087?

**jfoc** · 09-07-2008 10:16 AM

Originally Posted by cpanelkenneth

This is a change made in 11.23.6. The "Install SSL" function in WHM will only allow installing SSL Certificates on cPanel account domains that have a dedicated IP Address. The Shared IP address is not considered a dedicated IP Address.

One can still install a SSL Certificate for user nobody on arbitrary domains.

An aside: managing SSL Certificates for the cPanel/WHM/Webmail ports is done with a different interface.

How about if only have 1 ip address? This is possible with older WHM, how to make this working may be with manual?

thank you

**cpanelkenneth** · 09-08-2008 09:21 AM

Originally Posted by jfoc

How about if only have 1 ip address? This is possible with older WHM, how to make this working may be with manual?

thank you

You could likely add an appropriate SSL VirtualHost to one of the Apache Include files (include editor is in WHM, Service Configuration, Apache Setup).

**jfoc** · 09-08-2008 11:13 AM

Originally Posted by cpanelkenneth

You could likely add an appropriate SSL VirtualHost to one of the Apache Include files (include editor is in WHM, Service Configuration, Apache Setup).

It's working
thanks

**haze** · 09-16-2008 04:58 PM

Originally Posted by cpanelkenneth

This is a change made in 11.23.6. The "Install SSL" function in WHM will only allow installing SSL Certificates on cPanel account domains that have a dedicated IP Address. The Shared IP address is not considered a dedicated IP Address.

One can still install a SSL Certificate for user nobody on arbitrary domains.

An aside: managing SSL Certificates for the cPanel/WHM/Webmail ports is done with a different interface.

Should not the first virtual host in the lineup be considered dedicated to that IP ? Why has this changed and why hasn't the change been clearly outlined within the changelog or directly to customers via other means ?

**cpanelkenneth** · 09-17-2008 04:20 PM

SSL Certificates are for dedicated IP Addresses only. The fact that the old (pre-11.23.6) SSL Installer allowed certificates to be installed on arbitrary cPanel-managed domains was a bug.

SSL Certificates can still be installed on any IP Address on the system, provided the user is nobody. If you exercise this feature, be aware that if a SSL Certificate is already installed on the selected IP Address the code will consider the install to be a request to upgrade the existing certificate files and will do just that.

**webstyler** · 09-18-2008 03:58 AM

Hello

I have installed RapidSSL certificate on domain..

This domain not have ipd dedicated so we have used "nobody" and all is ok

The domain is similar to mymail.domainname.com

Is possible to get https://mymail.domainname.com/ex.html and NOT to get http://mymail.domainname.com/ex.html
Think this right .. ?

But, the really problem is that if I try to open
https://mymail.domainname.com:2096
I get and error because certificate is not the last installed (for domain) but the server default (as ms1.dom.com) ..

HOW can I set certificate also for 2083/2096 only for domain mymail.domainname.com ??

Thanks for any help/suggest

**cpanelkenneth** · 09-18-2008 09:21 AM

Originally Posted by webstyler

Hello

I have installed RapidSSL certificate on domain..

This domain not have ipd dedicated so we have used "nobody" and all is ok

The domain is similar to mymail.domainname.com

Is possible to get https://mymail.domainname.com/ex.html and NOT to get http://mymail.domainname.com/ex.html
Think this right .. ?

But, the really problem is that if I try to open
https://mymail.domainname.com:2096
I get and error because certificate is not the last installed (for domain) but the server default (as ms1.dom.com) ..

HOW can I set certificate also for 2083/2096 only for domain mymail.domainname.com ??

Thanks for any help/suggest

We don't support per-domain SSL Certificates for the cPanel, WHM or Webmail services at this time.

**webstyler** · 09-18-2008 09:27 AM

uhm.. Ok

what's solutions ?

what kind of ssl certificate we must buy ?

thanks

**cpanelkenneth** · 09-18-2008 09:31 AM

Originally Posted by webstyler

uhm.. Ok

what's solutions ?

what kind of ssl certificate we must buy ?

thanks

There is no solution for this at this time. The SSL Certificates for cPanel, WHM and Webmail are not handled by Apache and must be installed using the Manage Service SSL Certificates interface in WHM. This interface only allows a single SSL Certificate per service.

LinkBack

Thread Tools

Install a SSL Certificate and Setup the Domain

New Feature?

Help: Install a SSL Certificate and Setup the Domain

No "Setup a SSL Certificate to Work with your Site" Button in SSL/TLS Manager

Failed to install SSL certificate on the domain

How to setup a shared ssl certificate ...

setup whm ssl certificate manually?