Shared SSL Cert Enabled - Setting Location?

[garingas]

Hello,
I have real certs for my servers and one of my clients wants to be able to put up some files in a password protected folder that someone can pull down SSL. He doesn't need a cert.

I read in the past that you can use:
https://hostname.provider.com/~username/
...and that it would use the host certificate.

Unfortunately, it doesn't work.

I thought that I had seen a setting in WHM to enable shared use of the cert but for the life of me I cannot find it anywhere in the various config options.

Anyone know where it is?

Thanks!

 

[JamesCTotalWeb]

Take a look at Main >> Security >> Security Center >>> Tweak mod_userdir Security

This should take care of what you are looking for.

 

[garingas]

Close...

I really appreciate the attempt, but no cigar.

We already have "Enable mod_userdir Protection" unchecked to permit username access to domains.

(We can get to the sites using the user level URL as long as it is http instead of https.)

Thanks!

 

[vince512]

I am having the same issue...has anyone found a way to correct this?

Thanks,

Vince

 

[Snowman30]

I am having the same issue...has anyone found a way to correct this?

Thanks,

Vince

we also have a server with this same issue all of a sudden

anyone have a solution?

 

[jayh38]

I thought that I had seen a setting in WHM to enable shared use of the cert but for the life of me I cannot find it anywhere in the various config options.

Anyone know where it is?

Thanks!

whm > SSL/TLS > Manage SSL Hosts

 

[gtgeorge]

We too have just found that our shared ssl isn't working. Looking at manage ssl hosts our root server cert is no longer listed, but the secure access to webmail, whm and cpanel still work??

 

[Mindlash]

Same issue...

Anyone?

 

[MaraBlue]

We too have just found that our shared ssl isn't working. Looking at manage ssl hosts our root server cert is no longer listed, but the secure access to webmail, whm and cpanel still work??

Same here... in version 10 there was a "reset server certificate" option, but I can't find it in v11.
In WHM's SSL/TLS -> Manage SSL Hosts, there was no shared certificate listed, yet HTTPS for cPanel and WHM works. *shrugs*

 

[vince512]

Does anyone know if the server cert can still be used as the shared cert or was this functionality taken out of cpanel?

 

[cPanelDavidG]

Does anyone know if the server cert can still be used as the shared cert or was this functionality taken out of cpanel?

Do you mean the following: whenever someone goes to http://theirDomain.com/securecpanel they are connected to cPanel securely without any SSL warnings even if theirDomain.com itself has no SSL certificate?

 

[mavi]

DavidG you did not understand the problem yet?
we do can use ssl cert for cpanel logins no problem now we are asking that why we can not use it like this https://server.hostname.com

 

[cPanelDavidG]

DavidG you did not understand the problem yet?
we do can use ssl cert for cpanel logins no problem now we are asking that why we can not use it like this https://server.hostname.com

Why not install a signed SSL certificate for that then redirect to SSL Certificate name (which in this case would be the same as the hostname)?

 

[jols]

whm > SSL/TLS > Manage SSL Hosts

Thanks. But I clicked the option for one of the SSL domains to be "shared", now what? What kind of URL would work for this. I tried:

https://www.mainSSLdomain.com/~userID/

But no go.

 

[MACscr]

Hello,
I have real certs for my servers and one of my clients wants to be able to put up some files in a password protected folder that someone can pull down SSL. He doesn't need a cert.

I read in the past that you can use:
https://hostname.provider.com/~username/
...and that it would use the host certificate.

Unfortunately, it doesn't work.

I thought that I had seen a setting in WHM to enable shared use of the cert but for the life of me I cannot find it anywhere in the various config options.

Anyone know where it is?

Thanks!

The problem is that if we use hostname/~username/, then of course users bandwidth isnt counted. Is that correct?

 

[cPanelDavidG]

The problem is that if we use hostname/~username/, then of course users bandwidth isnt counted. Is that correct?

I believe if you use mod_bandwidth you can have the bandwidth for that user (when their website is accessed via ~username) counted. However, I am unfamiliar with the technical details of how to make that happen.

 

[MACscr]

I believe if you use mod_bandwidth you can have the bandwidth for that user (when their website is accessed via ~username) counted. However, I am unfamiliar with the technical details of how to make that happen.

It would be nice to know. Dont think its right for cpanel to offer a way to do shared ssl, but then allow that use to circumvent user resource accounting/management.

 

[cPanelDavidG]

It would be nice to know. Dont think its right for cpanel to offer a way to do shared ssl, but then allow that use to circumvent user resource accounting/management.

You can very easily prevent users from circumventing such measures by going to WHM -> Security -> Security Center -> Apache mod_userdir Tweak and enabling that tweak. You can also make exclusions to that protection now if you desired.

 

[MACscr]

You can very easily prevent users from circumventing such measures by going to WHM -> Security -> Security Center -> Apache mod_userdir Tweak and enabling that tweak. You can also make exclusions to that protection now if you desired.

LOL, that only disables the ability to use the username directories and that then of course disables the possibility to use the shared ssl.

cPanel introduced the shared ssl feature. Now i am only asking you to tell me how i can use that feature and still keep bandwidth accounting in play. I cant believe you would introduce a feature that would circumvent such a thing. You already said it could be done with mod_bandwidth. But my question is how? I am not trying to do anything special, just wanting to use one of your features and keep server integrity in mind.

 

[vikins]

Bump...

I can't believe this is where this thread ended. Finding a reliable shared secure certificate solution is vital. Is there a resource somewhere that has a recipe for solving this?

Thank you