The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Dynamic Subdomain SSL Issue

Discussion in 'Security' started by trwdesigns, Jan 26, 2016.

  1. trwdesigns

    trwdesigns Registered

    Joined:
    Jan 26, 2016
    Messages:
    1
    Likes Received:
    0
    Trophy Points:
    1
    Location:
    Las Vegas, NV
    cPanel Access Level:
    Root Administrator
    So, it happened. I've been using WHM and CPanel for years like everyone else, and someone has finally blown my damn mind. Here are the bullet points -- sweet jesus do I hope there are some creative souls out there! :)

    • User has a WP site at example.com. That site is informational and needs no SSL.
    • User requested a separate CPanel account at my.example.com because the WP redirection of example.com was interfering with the PHP system he was creating in terms of subdomains (see below).
    • User's site at my.example.com hosts a multi-account php system.
    • User's PHP system, when creating a new account, uses CPanel API to log into example.com and add a CNAME record, creating user1.example.com, user2.example.com, user3.example.com.
    • Each of these dynamically created subdomains simply loads my.example.com but with a custom subdomain for his web app's users. I can see how the custom name could be a selling point for his customers.
    • Now, the fun part. Are you ready? User buys a wildcard SSL cert from Comodo and tries to install it on two different CPanel accounts, citing that the cert was intended for *.example.com.
    Obviously, we all know that you can't install one certificate on two different accounts.

    He installed the wildcard cert on example.com, and I thought that it would at least allow his users to use https at user1.example.com and user2.example.com. But it doesn't.

    Is that because the CNAME records are pointing to a different CPanel account??

    Anyone every tried to wildcard SSL a dynamically created set of subdomains?

    Thanks!

    *Mind Blown* (smoke)
     
  2. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    30,678
    Likes Received:
    654
    Trophy Points:
    113
    cPanel Access Level:
    Root Administrator
    Hello :)

    The following document answers this question:

    SSL FAQ and Troubleshooting - Documentation - cPanel Documentation

    In particular:

    Does this help to answer your question?

    Thank you.
     
  3. Bradley Greenwood

    Bradley Greenwood Registered

    Joined:
    Mar 17, 2016
    Messages:
    1
    Likes Received:
    0
    Trophy Points:
    1
    Location:
    South Africa
    cPanel Access Level:
    Website Owner
    Is the documentation implying that this is simply not possible with cPanel / WHM?

    @trwdesigns How did you get around this in the end?
     
  4. storminternet

    storminternet Well-Known Member

    Joined:
    Nov 2, 2011
    Messages:
    462
    Likes Received:
    0
    Trophy Points:
    16
    cPanel Access Level:
    Root Administrator
    Have you assigned different IP address to subdomain on which you need separate ssl.
    If you have assigned different IP address to each subdomain in virtual host and change it's IP in dns zone editor
    then it should be accessible at it's own ssl.
     
  5. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    30,678
    Likes Received:
    654
    Trophy Points:
    113
    cPanel Access Level:
    Root Administrator
    Could you verify if the user has tried installing the wildcard SSL certificate for each individual subdomain (using the same certificate)?

    Thank you.
     
Loading...

Share This Page