Directadmin and exim daemons not using new SSL certificate

[cbolt]

Hello

I have updated the SSL certificate for DirectAdmin and Exim but the server is still serving the old expired certificate for these services.

Here is what I have done:
I followed the guide here: http://help.directadmin.com/item.php?id=15

Added the updated certificate into:
/etc/httpd/conf/ssl.crt/server.crt
/usr/local/directadmin/conf/cacert.pem
/etc/exim.cert

Rebuild confs:
/usr/local/directadmin/custombuild/build rewrite_confs

Restarted all services:
systemctl restart httpd
systemctl restart directadmin
systemctl restart exim
systemctl restart dovecot

Apache is now using the new certificate
But directadmin and exim are not!

Does anyone have any ideas?

 

[zEitEr]

Hello,

If you use a paid certificate then to install it to other services you might use the following script:

mkdir -p /usr/local/directadmin/scripts/custom/
cd /usr/local/directadmin/scripts/custom/
wget -O ./install_server_wide_cert.sh https://raw.githubusercontent.com/poralix/directadmin-utils/master/ssl/install_server_wide_cert.sh
chmod 700 ./install_server_wide_cert.sh
./install_server_wide_cert.sh

The final command will print usage details.

You might check this one: https://github.com/poralix/directadmin-utils/tree/master/ssl as well.

 

[cbolt]

Thanks @zEitEr that's a great time saver! Unfortunately it does not resolve the problem I am having. Directadmin and exim are still using the expired certificate. I had already manually performed all the steps in your script but I still ran your script anyway

 

[cbolt]

I figured it out, the old certificate had been installed in the control panel so was getting picked up by sni. Doh!