The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Shared SSL Cert Enabled - Setting Location?

Discussion in 'General Discussion' started by garingas, Aug 24, 2007.

  1. garingas

    garingas Member

    Joined:
    Jan 12, 2004
    Messages:
    19
    Likes Received:
    0
    Trophy Points:
    1
    Hello,
    I have real certs for my servers and one of my clients wants to be able to put up some files in a password protected folder that someone can pull down SSL. He doesn't need a cert.

    I read in the past that you can use:
    https://hostname.provider.com/~username/
    ...and that it would use the host certificate.

    Unfortunately, it doesn't work.

    I thought that I had seen a setting in WHM to enable shared use of the cert but for the life of me I cannot find it anywhere in the various config options.

    Anyone know where it is?

    Thanks!
     
  2. JamesCTotalWeb

    JamesCTotalWeb Well-Known Member

    Joined:
    Mar 20, 2005
    Messages:
    64
    Likes Received:
    0
    Trophy Points:
    6
    cPanel Access Level:
    Root Administrator
    Take a look at Main >> Security >> Security Center >>> Tweak mod_userdir Security

    This should take care of what you are looking for. ;)
     
  3. garingas

    garingas Member

    Joined:
    Jan 12, 2004
    Messages:
    19
    Likes Received:
    0
    Trophy Points:
    1
    Close...

    I really appreciate the attempt, but no cigar.

    We already have "Enable mod_userdir Protection" unchecked to permit username access to domains.

    (We can get to the sites using the user level URL as long as it is http instead of https.)

    Thanks!
     
  4. vince512

    vince512 Active Member

    Joined:
    Nov 16, 2003
    Messages:
    35
    Likes Received:
    0
    Trophy Points:
    6
    I am having the same issue...has anyone found a way to correct this?

    Thanks,

    Vince
     
  5. Snowman30

    Snowman30 Well-Known Member
    PartnerNOC

    Joined:
    Apr 7, 2002
    Messages:
    681
    Likes Received:
    0
    Trophy Points:
    16
    cPanel Access Level:
    DataCenter Provider
    we also have a server with this same issue all of a sudden

    anyone have a solution?
     
  6. jayh38

    jayh38 Well-Known Member

    Joined:
    Mar 3, 2006
    Messages:
    1,215
    Likes Received:
    0
    Trophy Points:
    36

    whm > SSL/TLS > Manage SSL Hosts
     
  7. gtgeorge

    gtgeorge Well-Known Member

    Joined:
    Feb 28, 2007
    Messages:
    86
    Likes Received:
    0
    Trophy Points:
    6
    We too have just found that our shared ssl isn't working. Looking at manage ssl hosts our root server cert is no longer listed, but the secure access to webmail, whm and cpanel still work??
     
  8. Mindlash

    Mindlash Well-Known Member

    Joined:
    Jul 7, 2003
    Messages:
    78
    Likes Received:
    0
    Trophy Points:
    6
    Same issue...

    Anyone?
     
  9. MaraBlue

    MaraBlue Well-Known Member

    Joined:
    May 3, 2005
    Messages:
    335
    Likes Received:
    2
    Trophy Points:
    18
    Location:
    Carmichael, CA
    cPanel Access Level:
    Root Administrator
    Same here... in version 10 there was a "reset server certificate" option, but I can't find it in v11.
    In WHM's SSL/TLS -> Manage SSL Hosts, there was no shared certificate listed, yet HTTPS for cPanel and WHM works. *shrugs*
     
    #9 MaraBlue, Oct 5, 2007
    Last edited: Oct 6, 2007
  10. vince512

    vince512 Active Member

    Joined:
    Nov 16, 2003
    Messages:
    35
    Likes Received:
    0
    Trophy Points:
    6
    Does anyone know if the server cert can still be used as the shared cert or was this functionality taken out of cpanel?
     
  11. cPanelDavidG

    cPanelDavidG Technical Product Specialist

    Joined:
    Nov 29, 2006
    Messages:
    11,279
    Likes Received:
    8
    Trophy Points:
    38
    Location:
    Houston, TX
    cPanel Access Level:
    Root Administrator
    Do you mean the following: whenever someone goes to http://theirDomain.com/securecpanel they are connected to cPanel securely without any SSL warnings even if theirDomain.com itself has no SSL certificate?
     
  12. mavi

    mavi Registered

    Joined:
    Apr 19, 2005
    Messages:
    1
    Likes Received:
    0
    Trophy Points:
    1
    DavidG you did not understand the problem yet?
    we do can use ssl cert for cpanel logins no problem now we are asking that why we can not use it like this https://server.hostname.com
     
  13. cPanelDavidG

    cPanelDavidG Technical Product Specialist

    Joined:
    Nov 29, 2006
    Messages:
    11,279
    Likes Received:
    8
    Trophy Points:
    38
    Location:
    Houston, TX
    cPanel Access Level:
    Root Administrator
    Why not install a signed SSL certificate for that then redirect to SSL Certificate name (which in this case would be the same as the hostname)?
     
  14. jols

    jols Well-Known Member

    Joined:
    Mar 13, 2004
    Messages:
    1,111
    Likes Received:
    2
    Trophy Points:
    38
    Thanks. But I clicked the option for one of the SSL domains to be "shared", now what? What kind of URL would work for this. I tried:

    https://www.mainSSLdomain.com/~userID/

    But no go.
     
  15. MACscr

    MACscr Well-Known Member

    Joined:
    Sep 30, 2003
    Messages:
    190
    Likes Received:
    1
    Trophy Points:
    18
    cPanel Access Level:
    Root Administrator
    The problem is that if we use hostname/~username/, then of course users bandwidth isnt counted. Is that correct?
     
  16. cPanelDavidG

    cPanelDavidG Technical Product Specialist

    Joined:
    Nov 29, 2006
    Messages:
    11,279
    Likes Received:
    8
    Trophy Points:
    38
    Location:
    Houston, TX
    cPanel Access Level:
    Root Administrator
    I believe if you use mod_bandwidth you can have the bandwidth for that user (when their website is accessed via ~username) counted. However, I am unfamiliar with the technical details of how to make that happen.
     
  17. MACscr

    MACscr Well-Known Member

    Joined:
    Sep 30, 2003
    Messages:
    190
    Likes Received:
    1
    Trophy Points:
    18
    cPanel Access Level:
    Root Administrator
    It would be nice to know. Dont think its right for cpanel to offer a way to do shared ssl, but then allow that use to circumvent user resource accounting/management.
     
  18. cPanelDavidG

    cPanelDavidG Technical Product Specialist

    Joined:
    Nov 29, 2006
    Messages:
    11,279
    Likes Received:
    8
    Trophy Points:
    38
    Location:
    Houston, TX
    cPanel Access Level:
    Root Administrator
    You can very easily prevent users from circumventing such measures by going to WHM -> Security -> Security Center -> Apache mod_userdir Tweak and enabling that tweak. You can also make exclusions to that protection now if you desired.
     
  19. MACscr

    MACscr Well-Known Member

    Joined:
    Sep 30, 2003
    Messages:
    190
    Likes Received:
    1
    Trophy Points:
    18
    cPanel Access Level:
    Root Administrator
    LOL, that only disables the ability to use the username directories and that then of course disables the possibility to use the shared ssl.

    cPanel introduced the shared ssl feature. Now i am only asking you to tell me how i can use that feature and still keep bandwidth accounting in play. I cant believe you would introduce a feature that would circumvent such a thing. You already said it could be done with mod_bandwidth. But my question is how? I am not trying to do anything special, just wanting to use one of your features and keep server integrity in mind.
     
  20. vikins

    vikins Well-Known Member

    Joined:
    Oct 3, 2006
    Messages:
    93
    Likes Received:
    1
    Trophy Points:
    8
    Bump...

    I can't believe this is where this thread ended. Finding a reliable shared secure certificate solution is vital. Is there a resource somewhere that has a recipe for solving this?

    Thank you
     
Loading...

Share This Page