Problem with SSL certificate

[fullmetalucard]

Hello,
I' ve recently purchased a thawte certificate for my webservers.
So i installed it successfully and my cert worked for apache, using it in:

/etc/httpd/conf/ssl.crt/www.mydomain.com.crt
/etc/httpd/conf/ssl.csr/www.mydomain.com.csr
/etc/httpd/conf/ssl.key/www.mydomain.com.key

So i changed my paths in the httpd.conf file for the virtualhosts to

SSLEngine on
SSLCertificateFile conf/etc/httpd/conf/ssl.crt/www.mydomain.com.crt
SSLCertificateKeyFile /etc/httpd/conf/ssl.key/www.mydomain.com.key

My website has now the trusted certificate to securize the payments.

But the bad point is that it doesn't work fro DA, because i still have a self-generated certificate.
So i edited the directadmin.conf file and tried to things:
- set cacert=etc/httpd/conf/ssl.crt/www.mydomain.com.crt
and cakey=/etc/httpd/conf/ssl.key/www.mydomain.com.key
Then i did a chown diradmin:diradmin, for these two files so that they could be read by DA => didn't worked
- tried

cd /etc/httpd/conf/
cp ssl.crt/server.crt /usr/local/directadmin/conf/cacert.pem
cp ssl.key/server.key /usr/local/directadmin/conf/cakey.pem
[B]and[/B]
chown root:root cacert.pem
chmod 644 cacert.pem
chown diradmin:diradmin cakey.pem
chmod 400 cakey.pem

But i didn't worked because, after the files changed directadmin crashed when i tried to restart it.
I've read the how to's about it, but i think i may have missed something..

 

[skruf]

Hey,

Take a look here:

http://help.directadmin.com/item.php?id=15

Make note of the part in those instructions that tell you to change the directadmin.conf file and sett SSL=1.

The top part is if you do NOT have you're own cert.

David

 

[fullmetalucard]

Hmm hmm,
SSL=1 has been set for a while, but as you can read in my post, i tried to copy my cert and my key to
/usr/local/directadmin/conf/cacert.pem
/usr/local/directadmin/conf/cakey.pem

doing
cd /etc/httpd/conf/
cp ssl.crt/mydomain.com.crt /usr/local/directadmin/conf/cacert.pem
cp ssl.key/mydomain.com.key /usr/local/directadmin/conf/cakey.pem

Or does it mean that i have to remove the same certs and key in the /etc/httpd/conf??
I don't think so, because those files are read by the Virtual Hosts so that they can work with my trusted cert.
So these files really need to be at two places: one fore the web and one for DA.
Is that correct?

 

[nobaloney]

They don't have to be in two places; you can tell DA to look for them elsewhere (I think in it's .conf file) or you can create links.

Jeff