I purchased an SSL certificate today and sent it to my host to be installed, however my host says that the key and the certificate don't match. I have no idea how they can't as i'm only forwarding the information I used. I tried to verify they did by using openssl, however when I try to find the modulus on the certificate I'm just given an error:
It's not chained, so far all I've got out of the host is that the key file doesn't match. I have sent it to them several times now so I'm not sure what the problem is. Out of interest I created the ssl for the FQD secure.mydomain.co.uk would I need to create that subdomain first and could that be the cause of the problem?
If you have ordered the certificate for secure.domain.co.uk which is also what you would have to have used for the host name when you generated the CSR. Then you will need to set up an account in WHM for that domain name and assign it a dedicated IP first.
When you go to install the certificate they will also have to enter the secure.domain.co.uk as the host name for the certificate to be installed on.
The error they were getting if they were trying to install it on domain.co.uk would have been that the certificate host name did not match the host name they were tring to install it on and it would have failed.
Need SSL Certificates? WEBYSSL.com (rapidssl.com International Affiliate)
Put Your Mark on the WWWorld with WEBY Systems
Originally posted by adamneal It's not chained, so far all I've got out of the host is that the key file doesn't match. I have sent it to them several times now so I'm not sure what the problem is. Out of interest I created the ssl for the FQD secure.mydomain.co.uk would I need to create that subdomain first and could that be the cause of the problem?
I doubt that would cause the error message that you're getting. If the subdomain does not exist when install the certificate then the httpd.conf entry will simply point to the accounts document root, i.e. /home/username/putblic_html.
When the csr is created in WHM emails should be sent out, one with the key and one with the csr. Use the key in the corresponding email when installing the certificate to ensure the proper one is being used.
I was hoping that the subdomain would redirect to the accounts document root as harryhood said. My host has asked me to verify the certificate with the CA now. On the same sort of lines how would I go about allowing my clients to use secure.mydomain.co.uk as a shared certificate?? I'm on a reseller plan using cPanel 10
Thanks trigger, I presume that if the user accessed all their sites through the user directory then none of the bandwidth would be counted against them? also i'm presuming mod_userdir is used to prevent this from happening?