Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!

SSL SNI Issue

Discussion in 'General Discussion' started by LimeCanvasWil, Mar 31, 2014.

  1. LimeCanvasWil

    LimeCanvasWil Registered

    Joined:
    Mar 31, 2014
    Messages:
    2
    Likes Received:
    0
    Trophy Points:
    1
    cPanel Access Level:
    Root Administrator
    Hi there,

    Just found this thread and I'm having the same problem.
    http://forums.cpanel.net/f5/ssl-sni-problem-366961.html

    I'm running CentOS 6.5 x86_64 kvm and WHM 11.42.0 (build 23)

    I understand that SSL SNI should be working on this combo, however, I'm getting the same issue as the thread author.

    I have one VPS with shared IPs for all accounts.

    Two of the accounts have SSL certs bound to their domains and operate correctly.

    However, when anyone tries to view the other domains (non SSL certs) on the VPS, over HTTPS, it redirects to the same secure version of one of the domains with a SSL cert.

    I contacted the host provider and they think it's an issue with SNI on WHM and suggested contacting yourselves (or getting unique IPs for each SSL cert domain).

    Can anyone point me in the right direction in resolving this?

    Thanks,
    Wil.
     
    #1 LimeCanvasWil, Mar 31, 2014
  2. cPanelMichael

    cPanelMichael Administrator Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    45,751
    Likes Received:
    1,995
    Trophy Points:
    363
    cPanel Access Level:
    Root Administrator
    Twitter:
    Hello :)

    The issue you have reported is not similar to the thread that you referenced. As I understand, you are able to successfully install SSL certificates on the shared IP addresses. What you are noticing is the intended behavior. The primary certificate is the default certificate for an IP address. Thus, all secure requests over the IP address itself, and over domain names without a certificate configured will use the primary certificate. You can make a certificate the primary one via "WHM Home » SSL/TLS » Manage SSL Hosts". Or, you can install a SSL certificate for each domain name on that IP address.

    Thank you.
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    #2 cPanelMichael, Apr 2, 2014
  3. LimeCanvasWil

    LimeCanvasWil Registered

    Joined:
    Mar 31, 2014
    Messages:
    2
    Likes Received:
    0
    Trophy Points:
    1
    cPanel Access Level:
    Root Administrator
    Hi Michael,

    Ah yes, sorry I must have pasted in the wrong link. I was looking at so many threads trying to see if somebody else had the same issue.

    So is there no way to have a mixture of cert and non cert domains on the same shared IP without redirecting to the primary cert for non-cert domains?

    Or to clarify, are my only options:
    1. Purchase an IP for the cert domains?
    2. Purchase a cert for the non cert domains?

    Many thanks,
    Wil.
     
    #3 LimeCanvasWil, Apr 2, 2014
  4. cPanelMichael

    cPanelMichael Administrator Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    45,751
    Likes Received:
    1,995
    Trophy Points:
    363
    cPanel Access Level:
    Root Administrator
    Twitter:
    Yes, these are the two options available to see a change in the behavior you have reported. Note that you could use a self-signed certificate if you do not want to purchase a certificate for the domain names without existing SSL certificates.

    Thank you.
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    #4 cPanelMichael, Apr 4, 2014
(You must log in or sign up to post here.)
Loading...
Similar Threads - Issue
  1. juancaco

    New Thread Issue accessing ticket system

    juancaco, Jan 22, 2019 at 2:36 AM, in forum: General Discussion
    Replies:
    1
    Views:
    10
    Infopro
    Jan 22, 2019 at 4:03 AM
  2. chickenpotpie

    New Thread Updating EasyApache issue 500 error on websites

    chickenpotpie, Jan 21, 2019 at 3:55 PM, in forum: EasyApache
    Replies:
    3
    Views:
    41
    Eminds
    Jan 21, 2019 at 8:13 PM
  3. gotroot

    New Thread Updating Apache SpamAssassin reject spam score threshold issue

    gotroot, Jan 20, 2019 at 12:00 PM, in forum: E-mail Discussion
    Replies:
    0
    Views:
    124
    gotroot
    Jan 20, 2019 at 12:00 PM
  4. Karateka

    cPanel Autoresponders Issue

    Karateka, Jan 17, 2019 at 11:38 PM, in forum: E-mail Discussion
    Replies:
    1
    Views:
    252
    cPanelLauren
    Jan 18, 2019 at 3:00 PM
  5. Rafael Solano

    URL redirection issue

    Rafael Solano, Jan 17, 2019 at 2:18 AM, in forum: General Discussion
    Replies:
    4
    Views:
    288
    cPanelLauren
    Jan 21, 2019 at 7:55 AM

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Accept Learn More...
    Dismiss Notice