Weird SSL certificate installation Error

[vrootwoot]

Hi Everybody.

I'm trying to install a wildcard certificate through whm / cpanel.
It has been ordered for *.mydomain.tld

Whatever the subdomain i would like to associate to my certificate whm keeps giving me this weird error:

[h=3]Error[/h]SSL install aborted due to error: ok



I would have expected something more human friendly.
Does anybody knows something about it?

Many thanks.
VrootWoot

 

[storminternet]

Hi Everybody.

I'm trying to install a wildcard certificate through whm / cpanel.
It has been ordered for *.mydomain.tld

Whatever the subdomain i would like to associate to my certificate whm keeps giving me this weird error:

[h=3]Error[/h]SSL install aborted due to error: ok



I would have expected something more human friendly.
Does anybody knows something about it?

Many thanks.
VrootWoot

Hi,

Have you setup wild card dns on your domain. If you are not sure how to do this then please follow these steps.

Edit dns zone file of domain either by vi editor, vi /var/named/domain.com.db or from the WHM Main >> DNS Functions >> Edit DNS Zone

Put, *.domain.com 600 IN A x.x.x.x Replace x.x.x.x with your server's IP address.

Now open httpd.conf by vi editor, vi /usr/local/apache/conf/httpd.conf

Edit the server ServerAlias entry and add *.domain.com. Now ServerAlias should look like as per following


ServerAlias www.domain.com domain.com *.domain.com


Now most importnat step is , just to restart the services, apache and dns (bind).
This you can do from the WHM Main >> Restart Services

Once all done you are free to reinstall the wildcard ssl on your domain

 

[Shyam Mohammed]

Hey,

Although you own 'wildcard' SSL certificates, the subdomains MUST be in a separate IP to install SSL. The best way to do this is to create the subdomain as a normal account via WHM. Try to install the SSL certificate after making this change, using the normal SSL installation procedure.

 

[vrootwoot]

Hello All thanks for your answers.
I followed another way after all.

Heavier to setup but more convenient for me as i wished to share the IP
Wildcard SSL certs and cPanel - MoS MoS Tech - Help for AdminsMoS MoS Tech – Help for Admins

 

[cPanelTristan]

Of note, the previous suggestion (http://forums.cpanel.net/f185/weird-ssl-certificate-installation-error-244501.html#post1009551) to modify httpd.conf directly for any virtual host entry would not work. Anytime EasyApache is run to recompile Apache or /scripts/rebuildhttpdconf is processed, that modification will be lost. It even warns this above each of those entries:

# DO NOT EDIT. AUTOMATICALLY GENERATED. IF YOU NEED TO MAKE A CHANGE PLEASE USE THE INCLUDE FILES.

Of note, there is another way to perform this action and there is also a script that can be used to add each new subdomain. The how-to on using the /var/cpanel/userdata files is at this location:

http://forums.cpanel.net/f5/ssl-certs-wildcard-domains-across-different-hosts-169030.html#post701022

Here is the script that was created by thecpaneladmin site to make it easier to install these:

Wildcard SSL Installation Script :: The cPanel Admin

 

[minosjl]

hi,

If we purchase the wild card ssl and wish to install it for the main domain and for all sub domains , does the old post you have mentioned will work for installing SSL for the main domain ? , because as i understand is , we are installing the wildcard as nobody user and after that we are coping the info from /var/cpanel/userdata/nobody to the particular user account .

It will be great if you tell something about , what's the steps we need to done in case of the main domain SSL install ?

 

[cPanelTristan]

If you install it on the main domain instead and that main domain has a dedicated IP, then the steps are simpler and you simply need to copy /var/cpanel/userdata/username/maindomain.com_SSL file to /var/cpanel/userdata/usrname/sub.maindomain.com_SSL location and make any revisions there.

Here username would be the cPanel username, maindomain.com wouold be the main domain and sub.maindomain.com would be one of the subdomains.

 

[usercpanel]

Hey Tristan... pretty manual work there but that did the trick....thanks