SSL Simplified - I hope.

Printable View

03-22-2015
Christopher

SSL Simplified - I hope.

I have a dedicated server. when logging in to whm or cpanel from chrome or firefox I would get "your connection is not private" page which I would use the advance page to get to the login screen. I never gave it much thought.

Years pass and I want to set up a small e-commerce site. So I install Prestashop on a domain and begin the shake down process of getting the site up.

When checking out I realize that that my browser does not have the little lock icon - (the whooshing sound you hear is the can of worms being opened.)

I can purchase an namecheap ssl cert for single domain for $10.95 or a Trustwave ssl which is a webserver cert. for 79.00 per year.

Would the trustwave cert work on all the domains for my 3 dedicated IP's? or would is just make connecting through whm and cpanel more secure?

any help would be great.
03-22-2015
Matt

A certificate works on one domain name only. You can probably find a cheap cert and use it for WHM and cPanel.

For the eCommerce site, you might consider investing a little more in a more expensive certificate. Some customer's want to see the address bar turn green, or will only shop at sites that have Verisign/Norton SSLs.

SSL on a public facing web site is not only something to secure the connection, but is increasingly a trustmark and can increase conversions/sales compared to a cheapo SSL.

Here are the SSLs we offer if you missed them:
https://glowhost.com/upgrades/buy-ch...-of-trust.html
03-22-2015
Christopher

Thanks Matt,

So to avoid the "your connection is not private" on my main whm & cpanel do I purchase the cert for the domain with the nameservers? Thanks again.
03-22-2015
David I

Hello Christopher,

Yes, in order to prevent such notification you need to buy and install an SSL certificate for your hostname.
03-22-2015
Matt

You'd purchase a cheap SSL for the server's hostname, not the nameserver.

The hostname is what is in your address bar at the cPanel and WHM URLs. It looks something like:

https://nickname.domain.com:2087 <-- In that example "nickname.domain.com" is the hostname you would by the SSL for.
03-25-2015
Christopher

I was half successful. For testing I went to Comodo for a Free 90 Cert. and obtained an SSl for the Prestashop Site. After installing though whm it worked like a charm. A nice green lock on the car pages.

With the hostname the cert installed good but I'm still not getting the SSl symbol on the cpanel and whm pages. It there a step that I missed.

I the cart I had to turn on the SSL option is there something like that in WHM? Is this something that I should submit a support ticket.

Thanks again
03-25-2015
Matt

You can always open a ticket, but this is a good place for this question too since others might learn from it.

In answer to your question, yes, there is a section in WHM called "Managed Service SSL Certificates" 9or similar) and this is where you can install that hostname SSL on cPanel, WHM, the email server, FTP server, and etc.
03-25-2015
Christopher

1 Attachment(s)

I have tried that, the only option is to share the cert with the domain, which I did. I did make it the primary cert. and to enable mail SNI, which I did not do., Just to be clear what I'm trying to accomplish is to not have the red crossed out https, when logging in to cpanel and whm. (image attached) Attachment 596

Thanks Matt for sticking with me.

Christopher
03-25-2015
Matt

If you go to Manage Service SSL Certificates you'll notice all of your SSLs in that section say they are "Self Signed" this means you issued them from your own server, and since your server is not a trusted signing authority, your browser gives a security warning. So, that self-signed issue needs to get fixed. This should say Comodo instead of self-signed, assuming you are using Comodo SSLs.

So, click the 'Browse' button on that page. Then Browse Apache and you will find the correct cert to use for that hostname.
03-25-2015
Christopher

Not sure if this screen shot represents a security issue please remove if it does.

[Image Removed]

The issuer is Comodo and for the life of me I can not find a browse button.
03-25-2015
Matt

Thats because you are not in "Manage Service SSL Certificates"

Please go there, and you will see it.
03-25-2015
Christopher

You are 100% Correct! Manage Service SSL Certificates is under the menu Service Configuration Not SSL/TLS where I was looking.
For anyone else I had to cut and paste the supplied cert into the field and then follow the prompt.
And for good measure, log out of WHM and clear browser data, when you navigated back to the whm and cpanel, the page should be secure.

Thank you Matt, I feel like I just gave birth.
03-25-2015
Matt

LOL. In that case, all I can say is "Congratulations." :clap: