The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Purchase and install secure cert feature...Grrr!

Discussion in 'General Discussion' started by koukou, Apr 20, 2004.

  1. koukou

    koukou Member

    Joined:
    Oct 8, 2003
    Messages:
    8
    Likes Received:
    0
    Trophy Points:
    151
    I installed a secure cert that we purchased from the vendor right inside the WHM interface. I did the whole thing inside WHM.

    After the purchase I fetched the two crt and key files in WHM and then pasted in the ca bundle file that Altaire/Comodo sent to me in the very bottom form window. (Where it says to put the ca file)...

    Also checked the box telling it this is an edit not a new setup.

    When I submit the form it returns this error:

    Attempting to verify your certificate.....
    Cerificate appears to be intact
    /snipped personal info/
    error 18 at 0 depth lookup:self signed certificate
    OK


    Now ssl works for the domain but the thing is acting like it's self signed. It still throws this browser error:
    "The security certificate was issued by a company you have chosen not to trust. View the certificate to determine whether you want to trust the certifying authority."

    I have already read over ten pages of forum posts and also went through a useless trouble ticket exchange with the cert vendor but still can't figure this out.

    Should I start over and paste all the files into the interface? It looks like there are now several useless and .old keys there.

    Many thanks in advance for any idea. (Is it just me, or should the cert vendor support their product? For $150 they should install the damn thing for you.)
     
    #1 koukou, Apr 20, 2004
  2. Choppy

    Choppy Member

    Joined:
    May 8, 2002
    Messages:
    10
    Likes Received:
    0
    Trophy Points:
    301
    koukou,

    Did you make sure that the domain you put the cert on has its OWN ip address?

    If so try it again and instead of ticking the box that its an update to the SSL let it create a new one.

    If the cert is working on the site but the ca has not been found it means the ca file or location is not being indexed correctly in the httpd.conf file.

    Contact me if you need help doing it as i dont have access to our servers right now in order to give you the exact location where the problem with the ca root not beeing found.

    It would be in the SSL area of the httpd.conf file where the domain is listed.

    Regards
    Phillip
     
    #2 Choppy, Apr 20, 2004
  3. koukou

    koukou Member

    Joined:
    Oct 8, 2003
    Messages:
    8
    Likes Received:
    0
    Trophy Points:
    151
    Thank you Phillip.

    Yes, it's already on a dedicated IP and has completed propagation.

    It's possible that the ca file is improperly indexed. Good idea. I'll check the .conf file as you suggest and see. (You know, come to think of it, when I go in a fetch the cert info using WHM, the CA file never shows up. Bet that's the ticket.

    If I get hopeless and my trouble ticket with the cPanl folks is not honored, I'll holler at you with log in details and gratitude.

    Again thanks!
    Dwayne
     
    #3 koukou, Apr 21, 2004
  4. emalbum

    emalbum Member

    Joined:
    Jun 5, 2004
    Messages:
    12
    Likes Received:
    0
    Trophy Points:
    151
    I had this problem too using WHM 9.4.0 cPanel 9.4.1-R55 to install a SSL Cert from InstantSSL. Here is what I did to fix the problem:

    1) Log into WHM as root
    2) Install an SSL Certificate and Setup the Domain
    3) Paste in the key, cert, and cabundle
    4) Do It
    5) SSH into server as root
    6) Went to /usr/share/ssl/certs
    7) Opened secure.mydomain.com.cabundle and secure.mydomain.com.crt and realized that there were a bunch of ^M's at the end of each line
    8) Used dos2unix on both files
    9) Opened secure.mydomain.com.cabundle and overwrote the contents with the info from the cabundle in #3...
    10) Went to /usr/share/ssl/private and did dos2unix on secure.mydomain.com.key
    11) Went to /etc/httpd/conf, backed httpd.conf up and edited it
    12) Found SSLCertificateFile for secure.mydomain.com in the file and added below it:
    SSLCACertificateFile /usr/share/ssl/certs/secure.mydomain.com.cabundle
    13) Restarted Apache and now it works!

    I hope this helps. I tried 100 different things so hopefully this will work for others :)
     
    #4 emalbum, Jun 22, 2004
  5. The MAzTER

    The MAzTER Well-Known Member

    Joined:
    Jul 3, 2003
    Messages:
    106
    Likes Received:
    0
    Trophy Points:
    166
    thanks :D

    that fixed it for me as well :)
     
    #5 The MAzTER, Jun 23, 2004
  6. batchtech

    batchtech Member

    Joined:
    Mar 13, 2004
    Messages:
    12
    Likes Received:
    0
    Trophy Points:
    151
    thank you thank you thank you

    was looking for this forever, this did it for me as well, thanks a ton
     
    #6 batchtech, Aug 16, 2004
(You must log in or sign up to post here.)
Loading...
Similar Threads - Purchase install secure
  1. kerb

    Installing purchased certificate on proxy subdomain

    kerb, Jul 25, 2017, in forum: Security
    Replies:
    3
    Views:
    122
    cPanelMichael
    Jul 27, 2017
  2. techguide

    All signed purchased SSL certificates replaced with self-signed versions

    techguide, Aug 10, 2017, in forum: Security
    Replies:
    1
    Views:
    67
    cPanelMichael
    Aug 11, 2017
  3. basilcraft

    trustwave WHM SSL Purchase

    basilcraft, Nov 27, 2015, in forum: Security
    Replies:
    2
    Views:
    607
    dalem
    Nov 27, 2015
  4. madtownlems

    New Thread Help Installing Multiple SSL Certificates on a single IP

    madtownlems, Aug 21, 2017 at 2:44 PM, in forum: Security
    Replies:
    0
    Views:
    21
    madtownlems
    Aug 21, 2017 at 2:44 PM
  5. Nirjonadda

    New Thread Install http-parser

    Nirjonadda, Aug 21, 2017 at 1:00 PM, in forum: General Discussion
    Replies:
    0
    Views:
    14
    Nirjonadda
    Aug 21, 2017 at 1:00 PM

Share This Page