How to install godaddy Standart SSL on directadmin?

[weber.s]

How to install godaddy Standart SSL on directadmin?

the ssl has two crt file,

mydomain.crt, like this

-----BEGIN CERTIFICATE-----
.....
-----END CERTIFICATE-----

gd_bundle.crt, has three parts
-----BEGIN CERTIFICATE-----
.....
-----END CERTIFICATE-----
-----BEGIN CERTIFICATE-----
.....
-----END CERTIFICATE-----
-----BEGIN CERTIFICATE-----
.....
-----END CERTIFICATE-----

how to install?

 

[floyd]

http://www.site-helper.com/ssl.html

 

[weber.s]

thanks for your reply. however, i already ready that document and has no clue to install a GD standart SSL certificate

as i said, i have two files from godaddy

my-domain.com.crt
gd_bundle.crt

and i click the install ssl and paste my-domain.crt under the CSR

the and paste the gd_bundle.crt to CA ROOT cert, is that correct?

but i got untrusted when i browse the website.

any one has install gd cert, pls help.

 

[weber.s]

this is what i have after pasting content of two file to D/A panel

uses an invalid security certificate.

The certificate is not trusted because it is self-signed.
The certificate is only valid for localhost

 

[weber.s]

in my /usr/local/directadmin/data/users/USERNAME/httpd.conf

i got thing like this

<VirtualHost MY-DEDICARED-IP:443>

SSLEngine on
SSLCertificateFile /etc/httpd/conf/ssl.crt/server.crt
SSLCertificateKeyFile /etc/httpd/conf/ssl.key/server.key
SSLCACertificateFile /usr/local/directadmin/data/users/USERNAME/domains/DOMAIN.com.cacert

I think there are some problem ...

 

[nobaloney]

Where did you install the certificate for your domain? Did you paste it under your private key file? If you've lost your private key file you'll need to start over. I don't know if GoDaddy reissues at no cost or not if you make a mistake; you'll have to ask them.

Where did you install the ca bundle? Did you click where it says click here?

Jeff

 

[weber.s]

Where did you install the certificate for your domain?

under the key file


GD Buddle:

click the link for ca root cert and paste ca buddle there

 

[weber.s]

here are my steps

1. first i generate a 2048 CSR
like this
-----BEGIN CERTIFICATE REQUEST-----
MIIDBzCCAe8CAQAwgZwxCzAJBgNVBAYTAmNuMRAwDgYDVQQIEwdiZWlqaW5nMRAw
DgYDVQQHEwdiZWlqaW5nMRgwFgYDVQQKEw9jaGVhcC1sb3Vpcy5jb20xEjAQBgNV
BAsTCXdlYm1hc3RlcjEcMBoGA1UE....................

2. with that i get a SSL from GD, two files

MY-DOMAIN.com.crt has one part

-----BEGIN CERTIFICATE-----
MIIFbzCCBFegAwIBAgIHBEdDHvQ4fDANBgkqhkiG9w0BAQUFADCByjELMAkGA1UE
................

gd_buddle.crt has three parts

-----BEGIN CERTIFICATE-----
MIIE3jCCA8agAwIBAgICAwEwDQYJKoZIhvcNAQEFBQAwYzELMAkGA1UEBhM***Mx ....................
-----END CERTIFICATE-----
-----BEGIN CERTIFICATE-----
MIIE+zCCBGSgAwIBAgICAQ0wDQYJKoZIhvcNAQEFBQAwgbsxJDAiBgNVBAcTG1Zh..................
-----END CERTIFICATE-----
-----BEGIN CERTIFICATE-----
MIIC5zCCAlACAQEwDQYJKoZIhvcNAQEFBQAwgbsxJDAiBgNVBAcTG1ZhbGlDZXJ0...................

3. I now paste MY-DOMAIN.com.crt under the key file

-----BEGIN RSA PRIVATE KEY-----
MIIEowIBAAKCAQEA1odRyFQrJuzN52ueBSzxlh4nOYBssc9VdE3aMXlOzkeZ1EMJ
........
-----END RSA PRIVATE KEY-----
-----BEGIN CERTIFICATE-----
MIIFbzCCBFegAwIBAgIHBEdDHvQ4fDANBgkqhkiG9w0BAQUFADCByjELMAkGA1UE............

4. then i click the ca root link and paste the gd-bundle.crt

5. then i link the private html to public_html via DA panel

visit htts://MY-DOMAIN.com show

uses an invalid security certificate.

The certificate is not trusted because it is self-signed.
The certificate is only valid for localhost


read from other post, i do a checking

in my /usr/local/directadmin/data/users/USERNAME/httpd.conf

i got thing like this

<VirtualHost MY-DEDICARED-IP:443>

SSLEngine on
SSLCertificateFile /etc/httpd/conf/ssl.crt/server.crt
SSLCertificateKeyFile /etc/httpd/conf/ssl.key/server.key
SSLCACertificateFile /usr/local/directadmin/data/users/USERNAME/domains/DOMAIN.com.cacert

the /etc/httpd/conf/ssl.crt/server.crt

------BEGIN CERTIFICATE-----
MIICkTCCAfoCCQD173m65kS4mTANBgk................

noted that this does not match the MY-DOAMIN.crt from GD

the /etc/httpd/conf/ssl.key/server.key

-----BEGIN RSA PRIVATE KEY-----
MIICSQIBAAKBgQCouTxcGrPf/uPobphVa...............

noted that this does not match the RSA key inside D/A

the /usr/local/directadmin/data/users/USERNAME/domains/DOMAIN.com.cacert
------BEGIN CERTIFICATE-----
MIIE3jCCA8agAwIBAgICAwWwDQYJKoZI.............
-----END CERTIFICATE-----
------BEGIN CERTIFICATE-----
MIIE+zCCBGSgAwIBAgICAQOwDQYJKoZIh...........
-----END CERTIFICATE-----
------BEGIN CERTIFICATE-----
MIIC5ZCCA1ACAQEwDQYJKoZIhvc.............
-----END CERTIFICATE-----


any one help? working for 4 days without a clue...

 

[nobaloney]

First make sure you're using the latest version of DirectAdmin, update if necessary.

Second, paste everything again, and when you do the clicking, check to make sure you get the "success" message.

If you're trying to secure the main site on the machine (the one in the user level of the admin login) then the instructions for installing the bundle are a bit more complex; you can search for them on these forums.

We and others can be hired to fix it for you if necssary (we charge for that, more than you paid for the Certificate; others may do it for less or at no charge), but if you can get GoDaddy to cancel and refund the Certificate, or if you don't mind wasting the money you've sent you might want to buy a Certificate which includes installation (we have an advert in the advertising section of these forums).

Jeff

 

[wdclub]

this is what i have after pasting content of two file to D/A panel

uses an invalid security certificate.

The certificate is not trusted because it is self-signed.
The certificate is only valid for localhost

Seems like trouble is what ip address, dedicated for your domain, associated with 'localhost'.