So... I have my SSL certificate (Comodo, btw). I can't install it on cpanel.
I've been told that it can be solved easily with the 'instal ssl' but I don't have that option.
Please help...
You should be able to install the SSL certificate from your
cPanel -> SSL/TLS -> Install and Manage SSL for your site (HTTPS)
If you do not have this option in your cPanel, you can try changing your cPanel theme from the Switch Theme menu and try again.
In case it still does not show, I am afraid that your only option left would be to provide the SSL to your hosting company, so they install it for you from WHM.
Please forward your SSL certificate file to your hosting provider. They will install it for your through WHM root user.
Related
I'm using ISPConfig 3 and all certificates are renewing automaticly, except one. I'd disabled SSL (and Let's Encrypt) for this Website, removed the Certs in /etc/letsencrypt for that Site and enabled it again. But it's still using the old cert and not renewing it. And now the browser show that it's a not acceptable cert for this site.
How can i fix it (renew) it?
Thanks!
Found a solution:
Disabled Let's Encrypt for this site in ispconfig Admin Panel
Removed the cert and the renewal file in /etc/letsencrypt/renewal and /etc/letsencrypt/certs for this site
Enabled let's encrypt for the site again in ispconfig configuration.
Done!
this is good but:
Disabled Let's Encrypt for this site in ispconfig Admin Panel
Removed the cert and the renewal file in /etc/letsencrypt/renewal and /etc/letsencrypt/certs for this site
Enabled let's encrypt for the site again in ispconfig configuration.
Previuos solution is missing for a step:
must be remove the cert file in /etc/letsencrypt/archive and /etc/letsencrypt/live
otherwise ispconfig create the new config file in /etc/letsencrypt/renewal be because old certificate still existing new certificate will not be generated
I have Godaddy Domain Pointed to AWS EC2 instance and also I have Purchased SSL from GoDaddy. I need to enable HTTPS for my side now. My I have Ubuntu instance with Apache installed.
Thanks
You need to generate csr file first on ec2, after validation, download the certificates. Afterwards enable ssl on apache2 in the config file. You can follow this tutorial on digital ocean for detailed explantaion
Please generate your CSR first, you can ask support team to generate it for you
Enroll your CSR on Godaddy SSL portal
Then, you can install your .cer on the server.
If you are not too sure, you can ask help from support team
How to manually install SSL certificate without Cpanel access on Centos 7/Apache? My Cpanel license is expired (simply have no money), so I can't login and can't use WHM API (command line) because API try to read Cpanel license file.
The certificate is already stored on system (issued by Lets Encrypt plugin). But I don't know how to make it effective on my site since Apache config folder is different on Cpanel system. What file should I edit to input my cert address?
Certificate is stored at: /etc/letsencrypt/live/mydomain.com/fullchain.pem
Private key is stored at: /etc/letsencrypt/live/mydomain.com/privkey.pem
Note: I use Engintron (Nginx Cpanel plugin), don't know if this change anything. I have root access.
I got to install SSL certificate (by Let's Encrypt) on cPanel directly by running Certbot-Auto command on SSH screen. Certbot-Auto will generate certificate and install it. It is very simple: https://certbot.eff.org/docs/install.html#certbot-auto.
I had to delete the old expired certificates from my /home/mydomain/ssl folder to avoid conflict. I don't know how things are inside cPanel cause I still have no license to access. I will renew license soon, but can't stop working on my site just because I have no SSL.
I just upgraded from ISPConfig 3.0 to 3.1.2 on Debian 7.
According to the Changelog, Let's Encrypt is now supported.
However, I don't see any Let's Encrypt specific options. I can create an SSL certificate from the SSL tab of a Website, but accessing the domain using https:// results in the following error in Chrome:
This site can’t provide a secure connection.
Is Let's Encrypt only available for new (clean) installations?
- or will the proper options emerge if I install e.g. CertBot or some other package?
It seems CertBot has a plugin for Apache that automates everything, but I'm worried ISPConfig and CertBot will conflict when both trying to control configuration files.
Thanks in advance for any guidance.
Jimmy
I realized that HowToForge would be the ideal place to ask. Here is the response I received from Till Brehm:
"1) You have to install certbot and just certbot, no certbot apache plugin. and do not create ssl certs with certbot at install time, when it asks for that, choose cancel.
2) then login to ispconfig, go to the website settings amd emable the checkbox labeled "Letsencrypt" which is on the first tab of the site settings. The SSL tab is not used for letsencrypt."
It worked just the way he said.
https://www.howtoforge.com/community/threads/ispconfig-lets-encrypt-not-available-after-upgrade.75540/#post-355688
Hello I would like some pointers for enabling ssl on bitnami joomla that works with xampp I have read many tutorials nothing seems to work.I have tried to forse ssl from joomla adminstrator it says that the connection is not safe where might the problem be i see that the cert is not trusted i accepted it as trusted but still doesn't work .if someone knows the answer please share!
Bitnami developer here,
I have created a new auto-signed certificate using our guide at https://wiki.bitnami.com/Components/Apache#How_to_create_a_SSL_certificate.3f and modified file installdir/etc/extras/httpd-ssl.conf to use the new certificate files and after that restarted Apache server with sudo installdir/ctlscript.sh restart apache. It worked for me. The lines I modified in httpd-ssl.conf are:
...
SSLCertificateFile "/opt/lampp/etc/ssl.crt/server.crt"
...
SSLCertificateKeyFile "/opt/lampp/etc/ssl.key/server.key"
...
Then, I browsed my server using HTTPS and it showed an error page with error code NET::ERR_CERT_AUTHORITY_INVALID.
That means that the certificate is invalid because of the Certificate Authority is not a trusted one. It is completely normal because I have auto-signed the certificate. To skip this, click the "Advanced options" button and then click the link "Proceed to ...". You should see your website.
Also in the navigation bar you will see text "https" in red. If you click in the lock close to it, it will prompt a window with text:
The identity of this website has not been verified.
• Server's certificate is not trusted.
Your connection to your_domain.com is encrypted with modern cryptography.
The connection uses TLS 1.2.
The connection is encrypted and authenticated using AES_128_GCM and uses ECDHE_RSA as the key exchange mechanism.
Regards,
Gonzalo