SSL certs and IP addresses

tom11011

Member
Apr 19, 2009
21
0
51
Hi Group,

If a customer wishes to have an SSL cert, do they require a dedicated static ip or can the certificate use the shared ip of the server?
 

kernow

Well-Known Member
Jul 23, 2004
995
42
178
cPanel Access Level
Root Administrator
Your client should be assigned their own dedicated IP address and then obtain an SSL cert for their domain, this is a must if their wanting to set up an ecommerce site.
Using the servers shared cert is really mean't for clients access to cpanel /webmail
 

tom11011

Member
Apr 19, 2009
21
0
51
Your client should be assigned their own dedicated IP address and then obtain an SSL cert for their domain, this is a must if their wanting to set up an ecommerce site.
Using the servers shared cert is really mean't for clients access to cpanel /webmail
You said "Using the servers shared cert is really mean't for clients access to cpanel /webmail"

I wasn't asking that, I was asking about the servers shared ip. Can I have multiple ssl certs on the same shared ip address. Thanks.
 

cPanelMichael

Administrator
Staff member
Apr 11, 2011
47,913
2,201
363
Hello :)

You can actually install a SSL certificate on a shared IP address with SNI functionality if your server uses cPanel version 11.38 or higher and the OS is Cent OS 6, RHEL 6, or Cloud Linux 6.

Thank you.
 

tom11011

Member
Apr 19, 2009
21
0
51
Hello :)

You can actually install a SSL certificate on a shared IP address with SNI functionality if your server uses cPanel version 11.38 or higher and the OS is Cent OS 6, RHEL 6, or Cloud Linux 6.

Thank you.
Thank you. What is SNI? Would like to learn more about it.
 

kernow

Well-Known Member
Jul 23, 2004
995
42
178
cPanel Access Level
Root Administrator
Its true you can use the servers shared IP address now for SSL certs, but I doubt your client (if running an ecommerce website) would want their potential customers to know their website shares the same IP address with a few or possibly even hundreds of other "strangers" websites. It mabe safe but it doesn't "sound" secure.