Web Hosting Talk






PDA

View Full Version : SSL Certificate Setup

jpatton
10-02-2007, 03:17 PM
Ok so you have the option in WHM to allow users to setup their own SSL certs in their accounts or to disable it so that you have to set them up. What have people found are the advantages or disadvantages of either setup. I know of some a host that has it disabled and find it somewhat of a pain to get things installed when I have to go through them and they charge me a fee to install it, when I could have done it without a problem. But I can also see where it might cut down on service tickets when people couldn't install them. I am setting up a new server right now and have been debating on this subject. Whats everyone think from a business standpoint?
AH-Tina
10-02-2007, 03:42 PM
We disable it because:

1. You have to have a dedicated IP for certs to work and most people don't understand this.

2. More often than not, the customer will screw up somewhere from generating the CSR to purchasing the CRT...and guess who gets to clean up the mess? :D

We actually have a form set up that our customers fill out if they need a CSR generated. We then give them instructions on how to get a CRT and tell them to copy/paste it to us when they're ready to have it installed.

--Tina
IH-Rameen
10-02-2007, 03:58 PM
We disable it because:

1. You have to have a dedicated IP for certs to work and most people don't understand this.

2. More often than not, the customer will screw up somewhere from generating the CSR to purchasing the CRT...and guess who gets to clean up the mess? :D

We actually have a form set up that our customers fill out if they need a CSR generated. We then give them instructions on how to get a CRT and tell them to copy/paste it to us when they're ready to have it installed.

--Tina

Agreed..

We wrote a text tutorial in pdf with screenshots on filling out a form to generate the CSR.

But we still had some incorrectly creating a CSR, so we created a video tutorial about it as well..

It has dramatically cut down on incorrect CSR's and we install the cert for the user as it is much quicker installing it, than fixing a broke attempt. :)
mrzippy
10-07-2007, 04:20 AM
We also have a tutorial to explain how to create the CSR. (I wish there was some way to link to it directly from within the CSR creation page in WHM.)

Basically, when a customer says they want a secure certificate, we point them to our instructions page. This page has step by step instructions and details to walk them through the entire process.

1. How to create the CSR in their WHM. (if they are a reseller)
2. Request upgrade to dedicated/static IP address.
3. Purchase the SSL certificate (we use www.enomsslcerts.com to resell eNom certificates)
4. Submit the resulting certificate to our helpdesk for installation.

The whole process is very simple and mostly automated. The only manual step is actual installation of the ssl certificate, which we prefer to do ourselves since it's too easy for the reseller to mess it up in the WHM.

Hope that helps.