generate cert for each domain to access secure cpanel?

boatdesign

Well-Known Member
Sep 13, 2003
158
0
166
How many hosts install a cheap cert for each domain so the https://thecustomer'sdomain.com/cpanel/ works without an invalid cert warning? Is there even a way to do this fairly quickly or would it be an extremely long process to install $9/year certs for each cpanel customer to access without any browser warning?

Is there a way to have WHM generate a self-signed cert for each domain so that when customers visit https://thecustomer'sdomain.com/cpanel/ they don't get the warning that the cert generated belongs to the server hostname?

Or does everyone just redirect secure cpanel access to the server's hostname?
 

ujr

Well-Known Member
Mar 19, 2004
290
0
166
easiest is to install a cert for the hostname, but it depends what you want to do.

self-signed certs will always produce a warning that they are not from a trusted authority, assuming the user has not accepted and installed it in their browser.

$9 certs are often chained root, and certain browser, whilst becoming rarer, have problems with them.
 

SageBrian

Well-Known Member
Jun 1, 2002
416
2
318
NY/CT (US)
cPanel Access Level
Root Administrator
I agree to just put it on the hostname, and have them access their cpanel from there.

You could even get away with a self-signed cert. Just explain to the customer that the warning they are seeing is normal for THAT site.
Of course, getting a signed Cert is best though.

Isn't there an option in WHM to redirect all cpanels to SSL or the hostname?
 

boatdesign

Well-Known Member
Sep 13, 2003
158
0
166
I agree to just put it on the hostname, and have them access their cpanel from there.

You could even get away with a self-signed cert. Just explain to the customer that the warning they are seeing is normal for THAT site.
Of course, getting a signed Cert is best though.

Isn't there an option in WHM to redirect all cpanels to SSL or the hostname?
It looks like the hostname is going to be the only real option. There is no option to easily selfsign a cert per domain name, nor install a cert per domain name for whm access, so if it stays on their domain https://customer'sdomain/cpanel they get the warning that the cert is for the server's hostname not customer'sdomain.com