dalydesign
Basic Pleskian
I have multiple domains on a single IP address and many require SSL Certificates.
I have enabled SNI in /etc/psa/psa.conf so it now says "SNI_SUPPORT true" as it was originally set to False. Setting this to TRUE then enabled the SSL option in 'Websites & Domains'.
I then purchased and installed the SSL Cert and activated it in the domain settings. On a dedicated IP address, this would work.
When I checked the certificate. it was not using the assigned SSL cert, instead it was using the Servers default certificate (plesk) that is assigned to the shared IP address.
When I check, I get the error message: "[warn] RSA server certificate CommonName (CN) `plesk' does NOT match server name"
I then rebooted the server and it made no difference. I changed the domain to a spare dedicated IP address, and the SSL Cert was certified correctly (it used the correct SSL Cert). When I changed it back to the shared IP address, it reverted back to the shared IP address' SSL cert. So the new SSL Cert was being ignored.
Can anyone advise.?
Thanks in advance.
For info: currently running 11.0.9 on Centos 5 and I'm testing this with latest IE, FF, Chrome so it accepts TLS Server Name Indication.
I have enabled SNI in /etc/psa/psa.conf so it now says "SNI_SUPPORT true" as it was originally set to False. Setting this to TRUE then enabled the SSL option in 'Websites & Domains'.
I then purchased and installed the SSL Cert and activated it in the domain settings. On a dedicated IP address, this would work.
When I checked the certificate. it was not using the assigned SSL cert, instead it was using the Servers default certificate (plesk) that is assigned to the shared IP address.
When I check, I get the error message: "[warn] RSA server certificate CommonName (CN) `plesk' does NOT match server name"
I then rebooted the server and it made no difference. I changed the domain to a spare dedicated IP address, and the SSL Cert was certified correctly (it used the correct SSL Cert). When I changed it back to the shared IP address, it reverted back to the shared IP address' SSL cert. So the new SSL Cert was being ignored.
Can anyone advise.?
Thanks in advance.
For info: currently running 11.0.9 on Centos 5 and I'm testing this with latest IE, FF, Chrome so it accepts TLS Server Name Indication.
Last edited: