Plesk 12.x / Linux :: Changing Default Certificate?
Sep 30, 2014
My System:
Ubuntu 12.04
Plesk 12.0.18 Update #18
Only Webserver no mail
What I want:
I have an old sha1 certificate and I would change this for the whole server.
What I have done so far:
I have already uploaded the new sha256 certificate with a new private key to plesk (I can not simply replace the old one, plesk does not allow me to upload a new private key).
Then I set the new certificate as standard certificate and pressed the "secure pannel" button.
After that the panel uses the new certificate.
Then I set in "Tools & Settings -> IP Addresses" on both IP addresses the new certificate.
Reboot
But now the "Tools & Settings -> SSL Certificates" shows me that the old certificate is still used 2 times somewhere. But the Interface does not show where it is used. How can I find out where this certificate is used? I want to remove the old certificate from the server.
I am replacing the default certificate in Plesk so that customers do not get a certificate warning when visiting the panel login page.
I've created the certificate in the "SSL Certificates" section made it default and used it to secure Plesk. However I've still got all the existing domains using the old default certificate, how can I do a mass changeover so that all existing domains are now using the new certificate?
I've updated the IP's to use the new certificate. When I go to "SSL Certificates" in "Tools and Settings", it seems that there are some domains now using the new certificate but quite a lot of the other are still not, how can I get these over too?
My default certificate expired recently. I created a new certificate "default certificate 2".
I used this certificate for "Secure the Panel"
I went to "Tools and Settings" -> "IP addresses" and made this certificate the default for all the IPs. On the page "Tools and Settings" -> "SSL certificates", it says Used: 0 next to "default certificate".
But when I try to delete it, it tells me: "Error: Unable to remove certificates: one or several certificates are assigned to the IP addresses/domains."
Is there anywhere I can check where this certificate is still used?
Is there not a way to change the default for the spam assassin level when creating a new mail account and still have the ability to change it individually if needed?
I changed it in the spamassassin config file /etc/mail/spamassassin/local.cf and in the server mail settings, but it still reads 7 when I create a new account and go to turn on the spam filtering. Does this value come from the db?
I can write a script making api calls? but surely there is a way to change the defaults and still have the ability to change these from the default for each account if needed?
I have a few sites each with their own GeoTrust SSL certificates. In a few days I will be changing servers and IP addresses of my sites (along with operating system and control panel; moving to CPanel 11 on CentOS from Ensim on Redhat).
I would like to know what changes or steps (if any) I need to make/take in order for the SSL to keep working on the new site without interruption? Can SSL certs safely be transferred this way? Do I need to purchase new ones?
Like, when you create an account, the clients cPanel says: [url](on the top).
I was wondering, any way to change that..not for a single account but all of them..kinda so when it creates a account it actually puts a different image.
I have issue with qmail server. I want to update ssl certificate and for this i have replaced older servercert.pem with new servercert.pem file in /var / qmail/ control/. and restart service of qmail using qmailctl restart.But after updating this certificate my web browser still showing older certificate details.
I installed a new ssl certificate, changed it to be default and secure Plesk, switched the IP to use it. Now I wanted to remove the old one but it shows me that there is still one usage of this cert and I can't remove it. But how can I find what is using it?
I tried to remove the ssl certificate but although I have removed it from the IP I'm getting an error that it is still assigned to it. The solution in [URL] .... didn't work cause the Certificate field is grey out in my case.
I’ve read the documentations of (PBAS, Plesk, and Securing Websites).how to add SSL Certificate to our Webmail? In addition, I need to know, how to request CSR key and install SSL for our mail server in order for us to protect our emails and to use the SSL Protocol in mail softwares such as Outlook? I will explain the scenario in details:
1- We have (www.example.com) which is our "Plesk Server hostname" and a subscription in our "Plesk Server". 2- We have (pbas.example.com) which is our "PBAS Server hostname" and it's not a subscription in our "Plesk Server". 3- We have (account.example.com) which is a "Subscription" in our "Plesk Server".
Here are the DNS records of our domain and subdomains: Host-Type-Data -A-192.168.1.30 www-A-192.168.1.30 mail-A-192.168.1.30 pbas-A-192.168.1.31 account-A-192.168.1.32 -MX-example.com.
how to generate CSR key for each domain/subdomain and how to install the SSL for it? Our "Plesk" is 11.5 and installed on CentOS 6.4.
When using `plesk bin --update domain.example.com -certificate-name 'certificate'`, Plesk always returns `Unable to find certificate`, I have verified the certificate exists using `plesk bin certificate -l -admin` and the spelling of the certificate name is correct. I can use the WebUI to associate the certificate to the site and have verified it works, however I need to automate this task.
Also, the online documentation for the `plesk bin site` command does not mention the `-certificate-name` option, however it is listed when running `plesk bin site -h`.
The documentation missing the information is found here: [URL] ....
I'm running Parallels Plesk 12 on Debian GNU/Linux 7.6...I have a valid certificate for my mail server : mail.mydomain.tld but I don't find the place in Plesk 12 to put it.
I've got an issue with the intermediate certificate, I need to provide additional to my certificate. As usual, I created a cert bundle with certs in following order:
- key data (BEGIN RSA PRIVATE KEY) - crt data (BEGIN CERTIFICATE - intermediate data (BEGIN CERTIFICATE)
And uploaded it successful to Plesk 12 certificate management. In Chrome, it's working. In Firefox not (as the intermediate cert is not provided by Plesk 12, and Firefox requires it).
How to inject the intermediate certificate for Plesk 12?
I am developing new module and installed SSL certificate using following API call.
Request call: <packet> <certificate> <install>
[Code]....
But when i checked this domain by open in browser. the certificate is not installed. After lots of R&D i found that there are option of select SSL in hosting setting screen. The default selected SSL is "default certificate".
I have changed this option to "not selected".
After this changes i have installed certificate again and it is working fine. So is it bug in plesk or it is default behavior Plesk Panel?
Outlook 2013 complains about the SSL certificate when using email. Installing the certificate still doesn't stop the error/warning. What are my options?
Can I install on the plesk server a self-signed SSL cert and avoid the issues? Can I buy & install a single certificate for that one domain and resolve the issue but not affect others. Do I need to buy a SAN certificate for the whole server?
My current configuration is: Ubtuntu Server 10.04, Plesk 11.5 and Roundcube 0.9.5 (installed via Plesk as the default webmail application) on Apache.
I played around with an SSL checker (https://www.ssllabs.com/ssltest/) to test my certificates and I found out that Roundcube delivered a broken certificate chain. It didn't deliver the intermediate certificate correctly. I searched through the configuration file of roundcube (/etc/apache2/plesk.conf.d/roundcube.conf) and discovered that there was only an entry for SSLCertificateFile.
To fix this I added the intermediate certificate via SSLCACertificateFile to the configuration file:
The only problem is that this configuration file is generated automatically:
Code: #ATTENTION! # #DO NOT MODIFY THIS FILE BECAUSE IT WAS GENERATED AUTOMATICALLY, #SO ALL YOUR CHANGES WILL BE LOST THE NEXT TIME THE FILE IS GENERATED.
Any domain using a SSL certificate is switched to the default certificate after each Plesk update?This is starting to get annoying and we are disabling automatic updates due to this error...
I just upgraded from Plesk 11.x to 12.0.18 and was eager to try the new sieve functions. I used the normal Plesk Updates/Upgrades tool to change the imap server from Courier to Dovecot. However, Dovecot will not start. It gives an error about /etc/dovecot/private/ssl-cert-and-key.pem missing.
When changing the subscriber of migrated (or new subscriptions) from a normal customer to another normal customer or reseller customer I sometimes get the following message:
Code: Reassigning Selected Subscriptions ERROR: PleskFatalException Picker not supported
When going back to the subscription overview I get the following error message:
The Plesk Health monitor is sending alerts to the wrong email by default. How can it be changed?hanged" notifications by "Health Monitor" are triggered by the default address that has been setup in My Profile > Profile & Preferences or is there a different way of changing this setting.
I am having a Plesk server and when I scanned it with tools like OpenVas, It detected the following vulnerabilities with CVE acronym. As the corresponding ports and services are being controlled by Plesk, I require to patch it.URL....As you can see this vulnerability has been hit on port 106. I checked the Plesk server and found the port 106 being used by service "poppassd". This was nothing I installed and came along with the Plesk installation. Hence just wanted to make sure whether it has a patch from Parallels. As per my investigation this service is used for changing mailbox passwords and I am currently using Roundcube client. How to patch this vulnerability.
As per the solution in pic, the vulnerability "SMTP antivirus scanner DoS" can be resolved by upgrading or installing anti virus for Plesk mail server. I am ready to buy Dr.Web or Kaspersky from Parallels. But wanted to make sure whether any of the above antivirus can resolve the vulnerability.