Hey everyone,

I'm looking to buy an Equifax cert to be installed on my CP/WHM box. I've so far begun the start of it by creating an account, secure.d0main.com. It's time for me to order the cert directly from Equifax but i'm unsure on what to do from here. I know I can generate a cert from WHM as well as the linux prompt but I would be grateful if someone can post directions on how to do this. If someone would do this, this would make a great thread to go into the archives since I'm sure many people will look back onto this thread. C'mon, I know a lot of you have done this :)

Thanks in advance.

edit: I came across the following on the VDI forums. I'm not sure if the procedures are the same for Equifax Secure certs even though it should be...

I know of at least one other company that is having some serious trouble with Equifax certs under CPanel/WHM so I'm sure there are a few others. If anyone does have a solution it's sure to benefit a few people.

The general problem appears to be it installs but kills Apache in doing so, but then doesn't appear as installed.

Personally? Good reason to stick with good old Thawte . Equifax cert graphics just aren't pretty enough :D The Sydney Thawte rep has the greatest english accent too..

Greg Moore

I use Equifax Certs on my WHM/Cpanel servers. Make the following entry to your httpd.conf file:

<IfDefine SSL>

##
## SSL Virtual Host Context
##

<VirtualHost youripaddress:443>
DocumentRoot "/usr/www/htdocs"
BytesLog domlogs/yourdomain.com-bytes_log
ServerName yourdomain.com
ServerAdmin admin@yourdomain.com
ErrorLog /usr/local/apache/error.ssl.log
TransferLog /usr/local/apache/access.ssl.log
Options All MultiViews
IndexOptions FancyIndexing

SSLEngine on

SSLCertificateFile /usr/share/ssl/certs/yourdomain.com.crt
SSLCertificateKeyFile /usr/share/ssl/private/yourdomain.com.key
SSLCACertificateFile /usr/share/ssl/certs/equifax.crt
</VirtualHost>
</IfDefine>

Originally posted by Curious Too
I use Equifax Certs on my WHM/Cpanel servers. Make the following entry to your httpd.conf file:

<IfDefine SSL>

##
## SSL Virtual Host Context
##

<VirtualHost youripaddress:443>
DocumentRoot "/usr/www/htdocs"
BytesLog domlogs/yourdomain.com-bytes_log
ServerName yourdomain.com
ServerAdmin admin@yourdomain.com
ErrorLog /usr/local/apache/error.ssl.log
TransferLog /usr/local/apache/access.ssl.log
Options All MultiViews
IndexOptions FancyIndexing

SSLEngine on

SSLCertificateFile /usr/share/ssl/certs/yourdomain.com.crt
SSLCertificateKeyFile /usr/share/ssl/private/yourdomain.com.key
SSLCACertificateFile /usr/share/ssl/certs/equifax.crt
</VirtualHost>
</IfDefine>

We had the same problem. Entries where there, etc. but it killed Apache every time.

I've never had Apache die when installing an Equifax Cert. I don't use WHM to install the cert, but after it's installed, I use WHM to re-start Apache.

So if you don't use WHM to install the cert, what do you do? Just do everything manually?

yea, but has anyone installed it with whm, and want to share the step by step procedures :)

Originally posted by Curious Too
I've never had Apache die when installing an Equifax Cert. I don't use WHM to install the cert, but after it's installed, I use WHM to re-start Apache.

That's what I just did a few days ago.. works great. Actually it was a direct Equifax cert... one through opensrs (which sells for Entrust).. and Entrust uses a chain certificate to Equifax.

Sounds confusing but cheapest solution out for 128bit encryption and works like a champ.

Originally posted by eddie
yea, but has anyone installed it with whm, and want to share the step by step procedures :)

It's VERY easy to do from a command prompt.

Mind sharing that with the directories to copy all the files to? :)

Copy yourdomain.crt to /usr/share/ssl/certs/ (be sure to back up your old certificate)

Copy your equifax.crt to /usr/share/ssl/certs/

Restart Apache using WHM