Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!

Install certificate using OpenSSL?

Discussion in 'Security' started by RedRabbit, Jan 12, 2018.

  1. RedRabbit

    RedRabbit Registered

    Jan 12, 2018
    Likes Received:
    Trophy Points:
    cPanel Access Level:
    Root Administrator
    Hi there,

    I have a slightly confusing conundrum that I'm hoping to get some advice on. This is technically outside of my comfort zone, so I apologise in advance if this question comes across as a little 'muddy', but I'll try to phrase it as succinctly as possible.

    I'm required to install an SSL certificate on our server in order to authenticate communications between our site and a third-party service using their API. I have no doubt that the third-party are a trustworthy company - we've used them for years. I'm not 100% sure that they're very familiar with cPanel servers, however, so I don't want to blindly assume that their advice is suitable for our setup.

    The SSL certificate I've been requested to install is generated by the third-party company, after I sent them our CSR generated from within cPanel. Unfortunately, the generated certificate will not install using cPanel or WHM's SSL interface, failing with the message;

    "error Certificate verification failed! The system did not find the Certificate Authority Bundle that matches this certificate. Contact “Third Party Company.” to obtain the Certificate Authority Bundle for “ThirdPartyCompanyCA”."

    The company can't provide me with a CA Bundle and would instead prefer that I attempt to install the SSL certificate directly onto the server using something like OpenSSL, bypassing cPanel/WHM altogether.

    My question is, quite simply, is this advisable? Generally, I try not to bypass cPanel/WHM for anything unless absolutely required - but I'm hoping that someone here can advise me whether installation of an SSL certificate in this manner is safe/appropriate for a cPanel/WHM server. Again, we can assume that the third party company is trustworthy - but with all the best intentions in the world, I don't want to assume that their advice is correct.

    Thanks in advance for any thoughts.
  2. cPanelMichael

    cPanelMichael Technical Support Community Manager Staff Member

    Apr 11, 2011
    Likes Received:
    Trophy Points:
    cPanel Access Level:
    Root Administrator

    It's generally advised to install a SSL certificate through a supported method (E.g. cPanel/WHM or a UAPI/WHM API 1 function via the command line.

    Were they able to offer any information about why a CABundle isn't available? Are you able to use the free cPanel-signed SSL certificate via the AutoSSL option?

    Thank you.
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice