Virtualmin: Importing SSL cert and key

4 posts / 0 new
Last post
#1 Thu, 05/31/2007 - 13:59
ah...lifes...good

Virtualmin: Importing SSL cert and key

I can't find anywhere on Virtualmin a function to import SSL cert and key for the individual domains.

Does a function like that exist?

If not, where should I upload my SSL cert and key to?

Thanks.

Thu, 05/31/2007 - 14:17
ah...lifes...good

OK found it.

> Webmin] Webming Configuration] SSL Encryption] Per IP

Suggestion: Maybe there should be a "SSL Cert" link at Virtualmin's main interface, under "Server Configuration"? Allowing domain owner or root administrator to configure SSL cert for specific website.

Fri, 06/01/2007 - 09:06
ah...lifes...good

Re my suggestion above, cancel that.

I found the SSL option for each domain name.

> Virtualmin] *select the appropriate domain name via drop down menu*] Services] Configure Website] SSL Options

I do have a problem. After doing...

1. Designating a cert and key on a Per IP basis (2nd post above)
and
2. Designating a cert and key for a specific domain name

I still cannot get SSL to work properly.

When I go to https://www.funnybone.com, I don't get the SSL-encrypted version of the website. Instead, I get directed to the catch-all "website" at /var/www/html.

When I look at httpd.conf, I see this:

Virtual Server Any 8443 www.funnybone.com /var/www/html
Virtual Server Any 443 www.funnybone.com /var/www/html

What must I do?

MY QUESTION IS: How do I import a SSL cert and key to a specific website and get it to work?

Thanks.

Sat, 06/02/2007 - 03:02
ah...lifes...good

Scrap all the above posts. Don't do anything mentioned in my posts above.

Follow Jamie's instruction.

****************************
To Import SSL Cert and Key
****************************

1) In Virtualmin, select the domain from the left menu, and click on Edit Virtual Server.

2) In the Configurable Settings section, select 'Create now with IP' and enter a new unused IP address into the adjacent textbox.
* Note1: All SSL website needs to have their own dedicated IP address. You can only have 1 SSL cert on 1 IP address.
* Note 2: Make sure that you have NOT used the IP address as a Shared IP address. (If you have, see below for rectification process)
* Note 3: DO NOT create a network interface with the IP address via] Webmin] Networking] Network Configuration] Network Interface. (If you have, see below for rectification process)

3) In the 'Enabled features' section, check the box next 'SSL website enabled?'

4) Click the 'Save Virtual Server' button.

5) On the left menu under 'Server Configuration' click on 'Manage SSL Certificate'.

6) In the 'New Certificate' tab, paste in or upload your certificate and key files, and click Install Now.

****************************
Rectification Process
(if you have created a network interface with the IP address you want to use for SSL)
****************************

1) Select the domain from the left menu, and click on Change IP Address, select the 'Shared address for all servers' option and click Change Now.
2) Click on Shared IP Addresses on the left menu, under System Settings.
3) Remove the IP that the domain used to be on from the shared list, and click Save.
4) Go to Webmin -> Networking -> Network Configuration -> Network Interfaces, and delete the virtual interface with that IP address from both the 'active' and 'boot time' list.
5) Re-try from step 2 in instructions above.

CREDITS: All detailed instructions provided by the genius named Jamie Cameron

Topic locked