Wildcard Certificate As Shared Server. How?

[martysmarty]

Hello,

Alright, We purchased a Wildcard Certificate for our websites

We only have 1 IP address (server shared), so this is the only solution to get all of the websites on the domain, use SSL.

Now we want to make this wildcard certificate the server shared certificate.

What we have done:

Admin user -> web01.domain.com -> private key and certificate added
User web02 -> domain: web02.domain.com

CA Cert uploaded and box "Use CA Cert" is on.

This should work you think.

Well, partially:

The certificate is installed. When I view the certificate, it shows *.domain.com as CN. which is perfect, works both on web01 and web02.

However, the Certificate is still untrusted, even though I uploaded it using the webinterface in the right way (first root, than intermediate, no empty rules.)

I tried A few things on the console, but so far nothing has helped.

Apache has been stopped and started many times. All certificates are correct (used on other single domain servers).

How can I get this certificate trusted by the root and intermediate files I have?

 

[chatwizrd]

You might have to overwrite the ssl files in /etc/httpd/conf

 

[martysmarty]

You might have to overwrite the ssl files in /etc/httpd/conf

Already did that.

As said, the normal certificate is working, but its not trusted, even though the root and intermediate certificate is in place and in the config file

 

[martysmarty]

Alright, We got the solution from John at DA. Thank you John!

Solution:

For the server IP, the CA cert has to be manually added to the virtualhosts.. the textarea in DA won't work because the admin domain is not the first domain in the list.
If you're using custombuild, you have to edit /etc/httpd/conf/extra/httpd-vhosts.conf and insert the CARootCertificateFile option in there.