Weird SSL certificate installation Error

vrootwoot

Registered
Nov 21, 2011
2
0
51
cPanel Access Level
Root Administrator
Hi Everybody.

I'm trying to install a wildcard certificate through whm / cpanel.
It has been ordered for *.mydomain.tld

Whatever the subdomain i would like to associate to my certificate whm keeps giving me this weird error:

[h=3]Error[/h]SSL install aborted due to error: ok



I would have expected something more human friendly.
Does anybody knows something about it?

Many thanks.
VrootWoot
 

storminternet

Well-Known Member
Nov 2, 2011
460
0
66
cPanel Access Level
Root Administrator
Hi Everybody.

I'm trying to install a wildcard certificate through whm / cpanel.
It has been ordered for *.mydomain.tld

Whatever the subdomain i would like to associate to my certificate whm keeps giving me this weird error:

[h=3]Error[/h]SSL install aborted due to error: ok



I would have expected something more human friendly.
Does anybody knows something about it?

Many thanks.
VrootWoot
Hi,

Have you setup wild card dns on your domain. If you are not sure how to do this then please follow these steps.

Edit dns zone file of domain either by vi editor, vi /var/named/domain.com.db or from the WHM Main >> DNS Functions >> Edit DNS Zone

Put, *.domain.com 600 IN A x.x.x.x Replace x.x.x.x with your server's IP address.

Now open httpd.conf by vi editor, vi /usr/local/apache/conf/httpd.conf

Edit the server ServerAlias entry and add *.domain.com. Now ServerAlias should look like as per following


ServerAlias www.domain.com domain.com *.domain.com


Now most importnat step is , just to restart the services, apache and dns (bind).
This you can do from the WHM Main >> Restart Services

Once all done you are free to reinstall the wildcard ssl on your domain :)
 
Jul 9, 2007
23
0
51
Ernakulam, Kerala, IN
cPanel Access Level
Root Administrator
Hey,

Although you own 'wildcard' SSL certificates, the subdomains MUST be in a separate IP to install SSL. The best way to do this is to create the subdomain as a normal account via WHM. Try to install the SSL certificate after making this change, using the normal SSL installation procedure.
 

cPanelTristan

Quality Assurance Analyst
Staff member
Oct 2, 2010
7,607
40
248
somewhere over the rainbow
cPanel Access Level
Root Administrator
Of note, the previous suggestion (http://forums.cpanel.net/f185/weird-ssl-certificate-installation-error-244501.html#post1009551) to modify httpd.conf directly for any virtual host entry would not work. Anytime EasyApache is run to recompile Apache or /scripts/rebuildhttpdconf is processed, that modification will be lost. It even warns this above each of those entries:

# DO NOT EDIT. AUTOMATICALLY GENERATED. IF YOU NEED TO MAKE A CHANGE PLEASE USE THE INCLUDE FILES.
Of note, there is another way to perform this action and there is also a script that can be used to add each new subdomain. The how-to on using the /var/cpanel/userdata files is at this location:

http://forums.cpanel.net/f5/ssl-certs-wildcard-domains-across-different-hosts-169030.html#post701022

Here is the script that was created by thecpaneladmin site to make it easier to install these:

Wildcard SSL Installation Script :: The cPanel Admin
 

minosjl

Well-Known Member
Jun 4, 2011
168
0
66
India
cPanel Access Level
Root Administrator
hi,

If we purchase the wild card ssl and wish to install it for the main domain and for all sub domains , does the old post you have mentioned will work for installing SSL for the main domain ? , because as i understand is , we are installing the wildcard as nobody user and after that we are coping the info from /var/cpanel/userdata/nobody to the particular user account .

It will be great if you tell something about , what's the steps we need to done in case of the main domain SSL install ?
 

cPanelTristan

Quality Assurance Analyst
Staff member
Oct 2, 2010
7,607
40
248
somewhere over the rainbow
cPanel Access Level
Root Administrator
If you install it on the main domain instead and that main domain has a dedicated IP, then the steps are simpler and you simply need to copy /var/cpanel/userdata/username/maindomain.com_SSL file to /var/cpanel/userdata/usrname/sub.maindomain.com_SSL location and make any revisions there.

Here username would be the cPanel username, maindomain.com wouold be the main domain and sub.maindomain.com would be one of the subdomains.