problem with DA when commercial SSL cert installed

A

Arcadius

Verified User
Joined
Jul 17, 2004
Messages
18
Location
Cracow, Poland
Hello there!

Cpuld anyone help fix this SSL problem:

With self-signed certificates everything works fine, with this one
generated by outside company (commercial SSL), DA always shows error, and does not start.
Could it be something wrong with the certificate? I've checked paths and rights few times.

What can I do to make it work, or to make log more verbose?

Part of my directadmin.conf

SSL=1
cacert=/usr/local/directadmin/conf/cacert.pem
cakey=/usr/local/directadmin/conf/cakey.key


directadmin.log says
2004:08:16-14:44:00: error loading certificate key
2004:08:16-14:44:09: error loading certificate key


ls -la /usr/local/directadmin/conf

-rw------- 1 diradmin diradmin 1273 Aug 16 14:27 cacert.pem
-rw------- 1 diradmin diradmin 887 Aug 16 14:27 cakey.pem



Any help from ypu guys?
It is working on FreeBSD 5.x.
 
Hi Arcadius,

I have not had any luck with password-protected certificates, so you may have to delete the password from it so it will work with DirectAdmin.

In order to delete the password from an SSL certificate, you will need the openssl utility that is part of the OpenSSL library. It might be installed on your server already. To remove the password from the certificate, do this:

openssl rsa -in server-key.pem -out new-server-key.pem

(Replace server-key.pem with your certificate filename). You will be prompted for the password, and then new-server-key.pem will be written without the password. This certificate should be able to be installed into DirectAdmin.

-Greg
 
is it possible to remove the certificate from the server cause i dont want to use it anymore

so de-install the ssl
 
If it's a password-protected cert it has to be reissued by the CA, since the password stuff is in the encryption.

I've posted earlier today on how to disable/remove a cert controlling DirectAdmin.

Jeff
 
You must log in or register to reply here.
Back
Top