Plesk 12.x / Linux :: Self Signed Cert Only SHA And Not SHA2
Jan 16, 2015how/where can i change this ? DB, File ? Or impossible ?
Or have i create my own one and then to import it ?
ADVERTISEMENT
Plesk 12.x / Linux :: Existing SSL Cert Removal
Sep 23, 2014So after the palaver yesterday, I managed to remove everything to a degree enough to reinstall Plesk. I'm still having quite a few issues but at least the websites are up and running again.
One of the more important ones is SSL certificates. Apparently they still exist somewhere, but they're not showing up in Plesk.
I tried doing /usr/local/psa/bin/certificate -l -domain <domain>, however that returns:
PHP Notice: Undefined index: CSR; File: /usr/local/psa/admin/plib/api-common/cuCertificate.php, Line: 878
Error occured while sending feedback. HTTP code returned: 502
PHP Notice: Undefined index: Priv; File: /usr/local/psa/admin/plib/api-common/cuCertificate.php, Line: 878
[Code] .....
Plesk 12.x / Linux :: Export SSL Cert To PKCS12
Jun 9, 2015I have a valid cert installed for a particular domain on my plesk server. I would like to take that cert info and export it to a valid PKCS12.
I was looking for the actual cert or pem files on the server but couldn't find them. Should i just copy all of the cert information to text files and create a pkcs12 via command line?
Plesk 12.x / Linux :: SSL Cert For Specific Domain
Dec 15, 2014Currently i'm running a server with 12 customers on it. They all have their own domainnames and subscriptions. One of them wants to secure his site with SSL and also his mail traffic. Currently he is using the mail.hisdomain.com server for receiving/sending e-mail. I want to install a certificate so that domain is secured. How can i accomplish this?
When i look on the server there is only 1 PEM file for the whole server. If i'm going to install his KEY and CRT in that file than all my clients will use that certifcate right? Can i make it so that only his domain uses thoses certifcates? Plesk is configured to use Postfix with Courier.
Plesk 12.x / Linux :: Change SSL Cert Assigned To IP Address
May 4, 2015I changed the default certificate (I added the certificate and marked as Default in Server->SSL Certificates).Also I assigned the SSL certificate to my domain.
This works fine, but now I'm trying to make the website PCI Compliant and their test shows that if you request the certificate from the ip address (instead of using the domain) it showns the Parallels self signed certificate instead os showing the default certificate i uploaded). I used also ssltools.websecurity.symantec.com tool and it shows the same. How to change the certificate shown for the one I bought?
Plesk 11.x / Linux :: Assigned New SSL Cert To IP Address - Still Showing Old
May 24, 2014I had an SSL cert that is about to expire so I purchased a new one, installed it, uninstalled the soon to expire cert. Went into Tools and Settings > IP Addresses, and assigned the new certificate to the IP.
Although I deleted the old certificate, it still shows in a browser as well as when I test the domain at a SSL server testing website. The new certificate shows also in both browser and test website, but it is a secondary certificate after the soon-to-expire cert.
How do I get rid of the original certificate?
Plesk 11.x / Windows :: Enable SSL With A Self-signed Certificate?
Feb 1, 2013I want to enable SSL in one of my domains. I've checked old topics about how to do this, but I can't get it done.
I want to use a self-signed certificate. I'm gonna use the SSL to receive and send data from/to an Android device, not to access it using a web browser.
I created my own certificate in SSL certificates (I used the self-signed option instead of Request). I didn't add anything else after that, I didn't add Certificate or anything else.
Once it's been created, I enable SSL on the domain I want. I just enabled the checkbox, there's no combobox to select a certain certificate, but I changed the default certificate on SSL certificates. I thought that was enough, but it wasn't working so I went to IP Addresses, I clicked in my dedicated IP (shared) and selected my new certificate in there, but it's still not working.
EDIT:
I've just seen that Apache Tomcat might not be installed, I'm not sure if that has anything to do with it. If I go to Server->Service Management I can find Apache Tomcat 5.4.4 in the Java tab (it's the only Apache entrance), but it says it's not active since it hasn't been installed or it's not correctly configurated. If I go to Applications->Installed applications Apache Tomcat is not there.
SSL Certificate Self Signed
Jun 7, 2009I got a plesk VPS and purchased SSL from GoDaddy. After I installed it, I was getting an error message from firefox about “SSL is self signed”. I obviously did something wrong, but what?I first logged into the SSL certificate section and created a new one...
View 3 Replies View RelatedSSL Certificate Is Not Signed
Aug 13, 2008i have just bought a SSL certificate. it has been succesfully installed on the dedicated server.. but when i enter to the addres firefox tells that its an insecure site because the SSL ceriticate is not signed...
how can i get one signed?
SSL Cert
Mar 11, 2007Have been given a task where I am not familiar at all..
Task I have been given is to 1. implement mod_ssl in apache 2.2.4
2. create ssl cert for mail server
3. create ssl cert for Terminal Server
Now the problem is am unsure when I create these crt files and keys should I enable a pass phrase or not?? Am using openssl and the documentation states if it is a server certificate then maybe better not to have a passphrase..
Initially I thought I dont want the user when they check there mail to have to authenticate their mail account and also the passphrase for the cert and same for the TS users but am unsure of the meaning and usage of the passphrase.
About To Buy An Ssl Cert
Jan 15, 2007for my online service. Do i spend the money for the special ssl cert that makes the ie7 bar green or a normal ssl cert?
Been thinking about getting an account on resellerclub for $200 and selling a cert to myself. Their other stuff might be helpful too. sounds like a plan?
IpsCA SSL Cert
Jul 12, 2008Have anybody got their SSL from ipsCA, certs.ipsca.com ?
The ssl seem to be fully validated for only $38, and both firefox and IE recognized it.
Their partner program look nice,but i did not hear anything after contacting their email. Is there anyone here is their partner?
SSL Cert. Where Start And How To
Oct 20, 2007I'm interesting to start with use of SSL cert.
First use is for any customer that have protected area and would have more security of data sent.
Have you any suggest for start, any link to help/faq and rapid how to?
Shared SSL Cert
May 11, 2007user of shared SSL and trying to use my hosts shared SSL cert to process the form opened from a menu link. The form opens OK using href=[url] on the test page, but when I submit the form using the action=[url] I get a IE cannot display this webpage error.
The host says:
The way you are using our shared SSL is correct. Still there is lot of scripts in the /home/blah-blah/public_html/staging, calling the link [url], which in turn gives error. This means that the scripts do not work on our shared SSL. It seems you need a separate SSL installed for your domain for the scripts to work properly.
Should it matter how many scripts (I assume he means php scripts) there are in the /staging area?
Is there another way to securely send this form to the server for processing? Do I need a cert for this domain to make this work? I've seen threads on this topic in other forums but the discussion level was between experienced developers, not a beginner like me. I would appreciate a do this not that kind of answer if possible.
Cheap Wildcard Ssl Cert
Mar 29, 2007Where can I buy cheap wildcard ssl certificates?
View 4 Replies View RelatedFirefox And An Intermediate Cert
May 22, 2007I had to reinstall a Verisign cert last week. After cleaning out a mess of old certs, keys and csr's I finally got the thing to install properly.
However, I get a "Website Certified by an Unknown Authority Error in Firefox".
Everything including the intermediate crt is installed correctly as far as I can tell and I get no error in any version of IE.
Here from the httpd.comf file:
Code:
<IfDefine SSL>
<VirtualHost IPADDRESS:443>
DocumentRoot /home/myuser/public_html
ServerName www.mysite.com
UserDir public_html
User myuser
Group mygroup
ScriptAlias /cgi-bin/ /home/myuser/public_html/cgi-bin/
SSLEnable
SSLCertificateFile /usr/share/ssl/certs/www.mysite.com.crt
SSLCertificateKeyFile /usr/share/ssl/private/www.mysite.com.key
SSLCACertificateFile /usr/share/ssl/certs/www.mysite.com.cabundle
SSLLogFile /usr/local/apache/domlogs/www.mysite.com-ssl_data_log
CustomLog /usr/local/apache/domlogs/www.mysite.com-ssl_log combined
SetEnvIf User-Agent ".*MSIE.*" nokeepalive ssl-unclean-shutdown
</VirtualHost>
</IfDefine>
The key matches the cert, and the cabundle is directly from Verisign.
Has anyone had a similar problem with getting a Verisign or other intermediate cert to work properly? I've reissued the thing twice and so far nothing has changed. It's like the intermediate cert isn't being sent even though it is installed.
When viewing the cert in firefox the Certificate Hierarchy only shows my domain. In internet explorer is shows Verisign Class 3 Public Primary CA -> Verisign Class 3 Secure Server CA -> My domain.
SSL Cert Doesn't Work On IE
Apr 20, 2007I ordered a RapidSSL (also called QuickSSL) cert from RapdiSSL.com (GeoTrust) to test out an email service. It works on firefox, but not in any version of IE I have on my two computers at home, a PC and a laptop running 6.0sp2 and 7.0 respectively.
When I raised a trouble ticket, Geotrust responded with a ppt attachment that clearly shows the cert working for the domain in IE. I have no reason to doubt them, but I replied with a ppt of my own showing the cert not working and am waiting for their reply.
Is it possible for a cert not to work on a specific browser like this? When I asked my email service provider, they said the following:
Quote:
Hello,
This indicates a problem with the SSL certificate that was installed. Possibly, an intermediate certificate issued by your certificate authority is need to be installed in addition to the one you gave us to enable Internet Explorer to fully trust your certificate and show the secure site.
Note for example that the only difference between going to
[url]and [url] is the certificate in use ... the same server and software with the same settings is used in both cases. I recommend going back to Geotrust and ask if there is a Geotrust Intermediate certificate that should be installed in addition to your issued certificate."
The domain is CNAMED to their server so that the app looks as if it is being run off my domain. I don't think there is anything non-standard about this because LuxSci is a topnotch provider and this is how they enable their clients to run private label services.
To Get Old SSL Cert Revoked If I Move Provider
Nov 4, 2007If I get an SSL certificate from one SSL provider and then decide to go with another provider for the same subdomain, do I have to get the first one revoked or simply replace the old with the new?
View 5 Replies View RelatedIE7 Warning For Shared Cert Offered By Host
Sep 2, 2007As many Reseller Hosts offer shared certificates as a feature, and many resellers have small-business clients who make good use of this, is anyone else finding it a major problem where visitors using IE7 get an error message for pages using the shared certifcates?
Quote:
There is a problem with this website's security certificate.
The security certificate presented by this website was not issued by a trusted certificate authority.
Security certificate problems may indicate an attempt to fool you or intercept any data you send to the server.
We recommend that you close this webpage and do not continue to this website....
As a layperson visitor seeing that, I would not even think of using the link they offer to "continue" anyway. It scares customers off. I asked my Host about it and he said that it is beause all the shared SSL's are self-signed certifcates, so they do incur that error.
How are others dealing with it? No other option but to advise the client to get their own certificate?
Are there resellers that do NOT have this problem with their shared certs?
1 SSL Cert... 1 Domain... 2 Servers. How To Setup A Backup Server
Jan 13, 2009We have two in-house servers, one is hosting our public web server. The other one was just purchased to host a mirror of the production server (as a backup). The site is protected by an SSL cert... my question is how do i set up the server(s) so if/when the backup server needs to be switched into produciton, the SSL cert will transition flawlessly?
They are both apache 2 servers.
Code Signing Certificate (cert Companies Becoming Vampires)
Jul 9, 2007One year ago a company I work for purchased and used a Code Signing Certificate from Comodo. This type of cert. ables to sign code, so your software executable files display 'company info' when downloaded, and avoid confidence warnings from Vista/XP and so on.
Now it's time to renew this cert (well, just purchase a new one) and surprise, this type of cert. has *raised* the price on every certification company I've looked.
Although I think this is just stealing money from companies, we need it, so I was wondering if you have some good deal to share.
I've seen $179 *a year* at Comodo, $499 *a year* at Verisign (holy cow), and the best deal so far is $563 for *three years* at globalsign.net.
Apache :: Bypass Client Cert Requirement For Localhost?
Feb 20, 2013I just setup an intranet wiki running apache2.2 on ubuntu 12.04. The server currently requires two-way certificate authentication (i.e. a server cert AND client certs).In <VirtualHost *:80>, Redirect permanent / https://<intranetSite>
Everything works dandy, except now that I'd like to find a way to bypass the client cert check for localhost so that I can run some maintenance scripts via cron on the server. Or perhaps it's possible to bypass SSL entirely, just for localhost?
Apache :: SSL Cert Files And Mod Rewrite For Multi-tenant Hosting
Feb 21, 2015I'm trying to set up a multi-tenant web application across multiple servers and would like to provide ssl for those tenants
I know this is possible to dynamically assign ssl using mod_rewrite, but I'm worried about speed.
Does apache cache the ssl cert file(s) when using mod_rewrite, or does apache lookup the ssl file every handshake / session?
How ssl cert files work and if using mod_rewrite is a worthy approach if connection speed is important.
Plesk 12.x / Linux :: Installing Mcrypt On Linux Centos 5.5 PHP 5.3.3
Jun 20, 2014I am trying to install Magento on my apache server. I am running into the dreaded mcrypt issue as Magento needs it to run. I have now been googling for the past few hours and have gotten nowhere.
Here are my details:
Linux
Centos 5.5
PHP 5.3.3
x86_64
Plesk 12
I have tried installing all sorts of different repos and it just isn't working.
When I try to install using # yum install php-mcrypt I get the following:
Loaded plugins: fastestmirror
Package php-mysql is obsoleted by php-mysqlnd, trying to install php-mysqlnd-5.5.13-3.el5.remi.x86_64 instead
--> Processing Dependency: php53-gd for package: psa-php53-configurator
--> Processing Dependency: php53-imap for package: psa-php53-configurator
[Code].....
Plesk 12.x / Linux :: Does Parallels Support It Being Installed On Linux VM
Feb 25, 2015Does Parallels support Plesk 12 being installed on a Linux VM that is provisioned on Microsoft Windows Server 2012 R2 Hyper-V?Is it fully supported?
View 2 Replies View RelatedBest Platform For IMAP Mail (Cpanel, Plesk Linux Or Plesk Windows)
Nov 17, 2008Best platform for IMAP mail (Cpanel, Plesk Linux or Plesk Windows)
I need to setup 5 email accounts on my domain, each will use IMAP and store messages on server, so total space taken by each account will be 2-5 GB.
I have decided to go with eurovps.com as I'm close to them and ping is fast.
What is the best solution for IMAP and large email accounts: Linux Cpanel, Linux Plesk or Windows Plesk?
Each account will be accessed by 2 people differently by Thunderbird and occasionally by webmail, so nice webmail is a plus.