The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Shared SSL for all domains on server?

Discussion in 'General Discussion' started by ryno267, Mar 24, 2004.

  1. ryno267

    ryno267 Well-Known Member

    Joined:
    Mar 3, 2004
    Messages:
    212
    Likes Received:
    0
    Trophy Points:
    16
    Location:
    Chandler, AZ
    cPanel Access Level:
    Root Administrator
    Shared SSL for all domains on server?

    How do I get a shared SSL for all the domains on my server? Like most hosting companies include that with all hosting accounts - just wondering what to buy and how to install it correctly...
     
  2. kris1351

    kris1351 Well-Known Member

    Joined:
    Apr 18, 2003
    Messages:
    963
    Likes Received:
    0
    Trophy Points:
    16
    Location:
    Lewisville, Tx
    You can install a SSL certificate on the master IP of the machine then open the user dir protection as clients request SSL. They can access the cert via:

    https://ip/~username

    If they do not add the trailing slash to the username it will keep just the IP address in the URL, if you add the / it will show server.domain.com/~username.
     
  3. ryno267

    ryno267 Well-Known Member

    Joined:
    Mar 3, 2004
    Messages:
    212
    Likes Received:
    0
    Trophy Points:
    16
    Location:
    Chandler, AZ
    cPanel Access Level:
    Root Administrator
    hmm... I already have a SSL on my IP, which is actually making any and all domains when in httpS:// mode is directing all those to our https site. This is something we need to change, once i find out how.

    I'd want the global ssl to cover all domains but when they do https://thierdomain.com instead of them having to goto https://myIPnumber.com~client

    Any further ideas?
    I know I might have to get a seperate IP for my ssl site so the others stop going to it... but i'd like all the others on my server to be covered by an ssl automagically when the account is created.
     
  4. sneader

    sneader Well-Known Member

    Joined:
    Aug 21, 2003
    Messages:
    1,126
    Likes Received:
    21
    Trophy Points:
    38
    Location:
    La Crosse, WI
    cPanel Access Level:
    Root Administrator
    You can't do SSL for all your domains using the format https://theirdomain.com -- unless you plan on buying an SSL certificate for every domain!!!! $$$$$$$$$$$$

    Shared SSL means sharing ONE certificate... meaning one of your company domains will have to buy a certificate. So, if your hosting company is www.coolhost.com, then you buy a certificate from Thawte, VeriSign or (my favorite) GeoTrust. You can have the certificate be www.coolhost.com, or something more secure sounding, like secure.coolhost.com. Then you install it, and everyone can use it like https://secure.coolhost.com/~userdir/orderform.html

    Hope this helps.

    - Scott
     
  5. ryno267

    ryno267 Well-Known Member

    Joined:
    Mar 3, 2004
    Messages:
    212
    Likes Received:
    0
    Trophy Points:
    16
    Location:
    Chandler, AZ
    cPanel Access Level:
    Root Administrator
    k.. that helps ya... I was just clinging to my perfect world idea where not everything costs $293892739 dollars... haha

    Just for example... One of my old hosts I had was www.icdsoft.com
    i have no problems with them at all - infact they're a very good host and cool guys with thier support... But when you sign up for a domain...which is 65/yr ... your domain automagically has a 128bit SSL on it...
    I just want to be like them i guess.. They do things so well...
    Okay.. i'll keep this in mind then...

    thanks.. i foresee some more questions comming soon.. :p
     
  6. sneader

    sneader Well-Known Member

    Joined:
    Aug 21, 2003
    Messages:
    1,126
    Likes Received:
    21
    Trophy Points:
    38
    Location:
    La Crosse, WI
    cPanel Access Level:
    Root Administrator
    You can certainly find people willing to sell you certificates for $65 per year. There is also someone out there that will do multiple domains on a single box for like $700, but all the domains have to be "owned" by the same person.

    - Scott
     
  7. ryno267

    ryno267 Well-Known Member

    Joined:
    Mar 3, 2004
    Messages:
    212
    Likes Received:
    0
    Trophy Points:
    16
    Location:
    Chandler, AZ
    cPanel Access Level:
    Root Administrator
    Would this setting in WHM have anything to do with it??
    under: WHM/Tweak Security/mod_userdir Tweak/

     
  8. GOT

    GOT Get Proactive!

    Joined:
    Apr 8, 2003
    Messages:
    900
    Likes Received:
    0
    Trophy Points:
    16
    Location:
    Norfolk, VA
    cPanel Access Level:
    DataCenter Provider
    If you enable that tweak, you'll break shared SSL.

    I've seen chained SSL's for as low as $20 per year, but, AFAIK, a site has to have its own unique IP to isntall an SSL cert.
     
  9. sneader

    sneader Well-Known Member

    Joined:
    Aug 21, 2003
    Messages:
    1,126
    Likes Received:
    21
    Trophy Points:
    38
    Location:
    La Crosse, WI
    cPanel Access Level:
    Root Administrator
    See this thread:

    http://forums.cpanel.net/showthread.php?s=&threadid=12304

    Talks about how you can do that tweak to disable the ~username thing... but then re-enable it just for certain domains.

    That way, you can limit the issue of users stealing bandwidth, and you can also charge for shared SSL if you wish.

    - Scott
     
Loading...

Share This Page