Unable to find CA certificate

T

tenny

Verified User
Joined
Sep 16, 2009
Messages
80
Hello,

i follw the article http://www.site-helper.com/ssl.html to install SSL for certain domain,

but always fail


1. i set dedicated ip for the domain

2. i login the user area of the domain and generate csr

3. i goto enom.com to buy a RapidSSL,and past the CSR into it.

4. i accept a mail "RapidSSL Certificate Request Confirmation",

click it's link and click accept.

5. i go to direatadmin,click "Click Here to paste a CA Root Certificate" and paste those code on " Paste a pre-generated certificate and key",and click save.

but it shows with error
Cannot Execute Your Request

Details

Unable to find CA certificate
Click to expand...

and i link https://mydomain... ,i get the pop to told it is unsafe.



how can i check where is wrong ?


thank you
 
You're doing it wrong. The terminology CA Root Certificate means a root certificate to be installed in addition to the Site Certificate. RapidSSL doesn't use CA Root Certificate, as it includes the root in the Site Certificate.

You should simply copy and past the Site Certificate directly under the Private Key in the field titled Paste a pre-generated certificate and key then mark the bullet and save.

Jeff
 
Hello,

b the way,will rapidssl mail me any key or certificate ?


thank you
 
RapidSSL should send you the Certificate in an email. They never see or send you the private key; that stays on your server for security.

Jeff
 
Hello,

as my attachment shows,it is scan from my browser,

im not sure why no matter how i copy the CERTIFICATE,

and following to the RSA PRIVATE KEY,and click save,


but it alyays fail,

the CERTIFICATE always does not be save successfully.


thank you
 

Attachments

  • gg.jpg
    gg.jpg
    21.4 KB · Views: 387
As long as you leave your private key (the same one created when you created your CSR) at the top, and post your own Certificate (the one RapidSSL sent you in an email) directly below it, with nothing else, then the Certificate should save properly.

Neither I nor anyone else can tell you why it's not; you can probably get enom to cancel and reissue the Certificate; if you do be sure to remove and recreate your private key (because it may be the problem) before creating a new CSR.

Note if you have an Enom account through a reseller you may need to contact your reseller's support group; generally Enom won't help you unless your account is directly with them.

This is the way to create a new Private Key using DirectAdmin:

Create a Self Issued Certificate

That's the only way to be sure you get a new Private Key from the DirectAdmin control panel.

Of course I and others could probably figure out your problem with root access to your server. While NoBaloney Internet Services is happy to offer you commercial support; you'd be better off buying a new Certificate, with installation included, from us; that would cost you less than having us try to fix your RapidSSL Certificate.

Jeff
 
You must log in or register to reply here.
Back
Top