GoDaddy SSL install help

R

robj

Verified User
Joined
Aug 4, 2007
Messages
53
I need some help. The www.site-help.com/ssl.html isn't much help. It's saying to copy and paste the SSL cert I received from GoDaddy and paste it under the CSR. I can't do that, cause it's a .crt file that I can't open.

So can someone give me a rundown for how to install a GoDaddy SSL certificate, or point me to better explained directions? Would DA support install this for me, if I asked nice?

Thanks

rob
 
Huh, I thought I tried that. Here's another question.

I have 2 files:
gd_intermediate_bundle.crt
and
www.DOMAIN.com.crt

I install the domain.com.crt, correct. But what's the gd_intermediate_bundle.crt?

I selected apache as my server type, if this helps.

thanks for the info.
rob
 
Next time; never order chained-root (intermediate) certificated. Use single root instead. It give's you less headake. If you've root access, you can try to manually edit the users httpd.conf. If not; first install the intermediate certificate, then the domaincert.
 
Now I have to ask. Install the intermediate cert by....?

I'll assume that installation for the domain.crt would be the same as the tutorial. Lets try to make a multidomain (UCC) tutorial from this post.

The following would be the likely procedure for installing an intermediate cert first. If more advanced users can add actual SSH commands (or different instrustions), it would be appreciated.

1. Enable SSL

2. Copy the intermediate bundle file to your Apache server. The key file should be present on the server from when you generated your certificate request.

3. Edit your Apache configuration to reference these files. I assume you will most likely edit the main httpd.conf file.

4. Set absolute path and filename to reflect the Key and Intermediate files:
(eg
SSLCertificateKeyFile /path/to/your/key/file
SSLCertificateChainFile /path/to/intermediate/bundle/file
)

5. Save your configuration file and restart Apache.


I'm not an advanced user, so the above may not be completely accurate. Can anyone expound?

rob
 
Randy said:
Next time; never order chained-root (intermediate) certificated. Use single root instead. It give's you less headake. If you've root access, you can try to manually edit the users httpd.conf. If not; first install the intermediate certificate, then the domaincert.
Click to expand...
Randy, all of your points are red herrings. chain-root Certificates are actually more secure than single-root certificates (in fact the most expensive Certificates from Verisign are chain-root Certificates. And DirectAdmin has fully supported chain-root Certificates for years.

You do not have to touch httpd.conf, and you most likely shouldn't, since it may be overwritten.

The right way to install the Certificate is to open up any file ending in .crt in a text editor (Windows desktop will usually try to open it as a cert, so either open Wordpad first, and then use it to open the .crt file, or use open as.

Install it under the key, as defined in DirectAdmin documentation.

The right way to open the chain-root bundle (you've called it the Intermediate Certificate) depends on what kind of a file it is. If it's a .crt or .txt file, open it as above, with Notepad. If it's a zipfile, open it with WinZip or similar, then with Notepad.

Then follow DirectAdmin documentation (see site-helper.com).

The most important (yet undocumented) step is to wait a minute before testing, as it can take up to a minute for DirectAdmin to properly set up the files and restart httpd.

Jeff
 
robj said:
Now I have to ask. Install the intermediate cert by....?

I'll assume that installation for the domain.crt would be the same as the tutorial. Lets try to make a multidomain (UCC) tutorial from this post.
Click to expand...
Why aren't you using the DirectAdmin control panel?

What do you mean by a multi-domain tutorial?

We've been selling Certificates for many years and are now selling Certificates with chain-root Certificates. We've never had a problem installing one.

Can you explain exactly what you're trying to do?

What am I missing?

Jeff
 
You must log in or register to reply here.
Back
Top