SSL certificate not working

M

mikelato

Verified User
Joined
Jan 25, 2010
Messages
74
I had an SSL certificate installed properly on my server for the past year and now it is time to renew it.

I went ahead and renewed it, I followed the tutorial on site-helper, but for some reason when I visit my site I get the following certificate error...

This certificate cannot be verified up to a trusted certificate authority.
Click to expand...

In the certificate properties it shows that it is renewed and valid for another year but for some reason the site still shows that error?

Does it take some time for it to start working or is something possibly wrong in my configuration?

Thanks,
Mike
 
Please, provide us with your SSL issuer's name or your domain with cert, or contact your SSL issuer support.
 
@mikelato:

Usually but not always this is due to a missing CA (chain) Cert. As zEitEr writes, let us know the domain name and one of us who knows how to study the chain (it's different from browser to browser) can check it for you.

Jeff
 
did you get this resolved?
all I do is replace the "domain name cert" part and let DA do its thing, I dont restart anything
 
mikelato said:
I had an SSL certificate installed properly on my server for the past year and now it is time to renew it.

I went ahead and renewed it, I followed the tutorial on site-helper, but for some reason when I visit my site I get the following certificate error...



In the certificate properties it shows that it is renewed and valid for another year but for some reason the site still shows that error?

Does it take some time for it to start working or is something possibly wrong in my configuration?

Thanks,
Mike
Click to expand...

This is exactly the same issue im having after 3yrs without one. I went ahead to renew the certicate for the 4th year. I created a new CSR then submitted it to Thawte. After 3 attemps it still fails to work. I get a warning that its not trusted.

Iv never had this issue before as i said for the past 3yrs no problems. Now its a huge problem.

I find it hard to believe that i submitted 3 new CSR's then got 3 web certificates back that doesnt match the key.

Can someone from DA comment please?
 
Posters who don't give us enough information to check aren't able to get help on this issue.

If you really want help rather than just to vent, then please first try restarting apache to see if this solves the problem, and if it doesn't, then let us know the following information:

The domain name.
The IP# on which it's hosted.
The specific Certificate (brand and version) you've newly installed.
If you've installed a CA root certificate.
If the domain is installed at the user level of the admin login.

This information will give us something to check on. If you don't want to give us some of this information, that's okay too; just give us what you feel comfortable giving us. And then of course don't be surprised if you don't get a reply, as all of the above is really necessary to troubleshoot.

Jeff
 
Thanks for your advice but I have contacted DA support regarding the issue.

When I attempt to create a CSR and go back to the SSL setup page the RSA key is not in the text box so there is something wrong with DA it isn't the way I am setting it up. One or more of the setup files must be corrupt. I will post my results here...

Thanks,
Mike
 
Ok so I have narrowed the issue down so I think I am close to getting this working.

When I enable SSL for the admin domain (or any domain) apache crashes saying that there is an invalid path to the cert and key. So after I enabled it I went to the custom httpd configuration the cert and key entires are blank.

I checked the template files (EX: virtual_host2_secure.conf) and they say...

SSLCertificateFile |CERT|
SSLCertificateKeyFile |KEY|

So maybe the |CERT| and |KEY| variables are returning a blank entry? I believe this is what is wrong so what can I do to change this because it is happening for all of my domains including the admin domain.

Thanks,
Mike
 
Oh and BTW,

After I enable SSL apache crashes, but if I go into the users custom http conf through the shell and add the path in manually the SSL cert works fine but once directadmin restarts or does anything it seems to reset back to a blank entry and crashes apache. I was going to change the templates but I don't want all of my new users to have my keys enabled by default as it is a per domain cert.

Thanks again,
Mike
 
You must log in or register to reply here.
Back
Top