SSL Certificates

[kram@]

Hello All,

I recently renewed an SSL cert from godaddy.com
I am having a few issues that I would appreciate some help with!

When I access the PLESK 8.4 control Panel @ https://server.kbpsaccess.co.za:8443
The old cert information is loaded.
Cert issued 2007-08-29
Cert expires 2008-08-29

when I access the default https://server.kbpsaccess.co.za
The new cert information is present.

--
I deleted the cert, from the server.
Created a new CSR -- from server --> certificates
Re-Keyed the cert

I allocated the Cert to the IP, which is exclusive for the domain.

--

Any thoughts?

 

[ziba@]

Hi,

Plesk control panel uses its own certificate by default and if you create and install certificate for domain server.kbpsaccess.co.za it will not be automatically installed to control panel.

To install certificate for Plesk control panel you should do the following:
1. Make sure this certificate is present in Server > Certificates. If it is not there then you should add it.
2. Check this certificate and click on 'Secure control panel'.

Check http://download1.swsoft.com/Plesk/Plesk8.4/Doc/en-US/plesk-8.4-unix-administrators-guide/24821.htm for details.

 

[kram@]

More Detail

Hiya Ziba,

Thanks for taking the time, to reply.
However maybe i was not entirly clear, in my previous post.

The new cert, works for the URL https://server.kbpsaccess.co.za (see the site seal)

It DOES NOT WORK under the Control Panel @ https://server.kbpsaccess.co.za:8443

 

[kram@]

More info

Digging round a little, i found the following information in

/etc/httpd/conf.d/zz010_psa_httpd.conf<VirtualHost x.x.X.x:443 >


ServerName default-x-x-X-x
UseCanonicalName Off
DocumentRoot /var/www/vhosts/default/httpsdocs
ScriptAlias /cgi-bin/ "/var/www/vhosts/default/cgi-bin/"
RewriteEngine On
RewriteCond %{REQUEST_METHOD} ^TRACE
RewriteRule .* - [F]
SSLEngine on
SSLVerifyClient none
SSLCertificateFile /usr/local/psa/var/certificates/cert-Y1RLDD
SSLCACertificateFile /usr/local/psa/var/certificates/cert-RSYBWC
<Directory "/var/www/vhosts/default/cgi-bin/">
AllowOverride None
Options None
Order allow,deny
Allow from all
</Directory>
<Directory /var/www/vhosts/default/httpsdocs>
SSLRequireSSL
</Directory>
</VirtualHost

 

[ziba@]

Hiya Ziba,

Thanks for taking the time, to reply.
However maybe i was not entirly clear, in my previous post.

The new cert, works for the URL https://server.kbpsaccess.co.za (see the site seal)

It DOES NOT WORK under the Control Panel @ https://server.kbpsaccess.co.za:8443

I understand what you mean.

Config file you posted is for port 443 as you can see, not for 8443.

Let me clarify this a bit:
1. Plesk control panel runs on its own apache which listens on port 8443. This apache is compiled by Parallels and installed when you install Plesk. Configuration files for this apache are store in /usr/local/psa/admin/conf -- never change these files unless you are 100% sure of what you are doing because incorrect changes may lead to crash of control panel site.
2. Your sites run on apache that is installed in your system. This apache accepts connection on ports 80 and 443
3. When you install ssl certificate for domain/ip address this applies changes only to apache running your sites, it does not change certificate for control panel.

If you want to see correct certificate at https://server.kbpsaccess.co.za:8443 then in control panel you should go to Server > Certificate > select certificate and click Secure control panel.

 

[kram@]

Solved

Yo Zimba,

After a weekend of many major upgrades, i was simply looking in all the wrong places!

Your solution: Server > Certificate > select certificate and click Secure control panel.
was exactly what i was missing.

 

[ziba@]

Hi,

Glad to hear that it was fixed