1. Please take a little time for this simple survey! Thank you for participating!
    Dismiss Notice

Installing SSL Certificates

Discussion in 'Plesk for Linux - 8.x and Older' started by epretorious, Aug 12, 2005.

  1. epretorious

    epretorious Guest

    Using the Certificates Interface I created a private key and certificate signing request (CSR).

    I then sent the private key and the CSR to Thawte for signing.

    After the certificate had been signed, I installed the certificate using the Certificates Interface but I did not upload a CA certificate. (The Certificate Interface indicated that it is not required.) Everything looks good but the server is still sending the Default Certificate when visitors access the site using HTTPS.

    1. Do I have to upload the CA certificate?
    2. What is a CA certificate?
    3. How do get the CA certificate?
  2. jamesyeeoc

    jamesyeeoc Guest

    Please read the sections on SSL Certificates in the Admin Guide:


    Make sure you follow the Plesk Admin Manual section on Installing it to the CP, Assigning the certificate to the IP/domain, and Default Cert.

    You don't have to but since you are paying for a Thawte, you should.
    The CA Certificate is used to appropriately identify and authenticate the certificate authority, which has issued your SSL certificate.
    From Thawte. They should have emailed you appropriate instructions on how to obtain your CA certificate based upon the exact certificate product purchased.
  3. epretorious

    epretorious Guest

    The Admin Guide directs admin's to...
    ...but when viewing the Physical Hosting Setup Page for the domain there is NO drop-down box.

    Am I overlooking something?
  4. epretorious

    epretorious Guest

    FWIW: /home/httpd/vhosts/<domain>/conf/httpd.includes contains...
    and /usr/local/psa/var/certificates/certQLD8906 contains...
  5. jamesyeeoc

    jamesyeeoc Guest

    You do have this domain assigned to an EXCLUSIVE IP, not a shared IP, right?

    It will only show a pull down if there are more than 1 certificates available for the domain to choose from (ie. if you create multiple certs for the client). If you only have one certificate assigned to the domain, then it should default to that one (since it's the only one). Of course, I could just be misunderstanding which part of the process you are at....
  6. epretorious

    epretorious Guest

    I just found the section in the Admin Guide that addresses that point. I had been attempting to use an SSL cert. with a domain using a shared IP. IMHO: the CP should recognize that the domain uses a shared IP and prevent the admin. from even attempting to install a certificate for that domain.

    Oh well. Lesson learned. :rolleyes: