Aujourd’hui je vais présenter l’installation d’un certification wildcard afin de crypter non pas le www mais tous les sous domaines avec UN SEUL certificat.
Il faut savoir que le certificat wildcard est un peu plus cher mais que si vous préférez utiliser des sous domaines différents pour vos CMS c’est un plus non négligeable.
Allons-y :
* "User" should be "nobody"
* "Domain" should be "*.example.com".
2. In WHM -> Manage SSL Hosts, set the cert to be a shared cert.
3. In the cPanel for the user of the domain "example.com", create 2 subdomains (sub1 and sub2).
4. In the shell, as root, run these commands in order to generate the ssl file at /var/cpanel/userdata/$username/*.example.com_SSL:
* /usr/local/cpanel/bin/apache_conf_distiller --update
* /usr/local/cpanel/bin/build_apache_conf
* /scripts/restartsrv_httpd
5. copy /var/cpanel/userdata/$username/*.example.com_SSL file to sub1.example.com_SSL (and sub2.example.com_SSL, etc)
6. edit sub1.example.com_SSL (etc) to change the following 2 things:
* the "documentroot" line from /usr/local/apache/htdocs/ to /home/example/public_html/sub1/ (etc)
* the "servername" from "*.example.com" to "sub1.example.com" (etc) (with quotes).
7. copy the new file (.crt, .key ...etc)
* /usr/local/cpanel/bin/apache_conf_distiller --update
* /usr/local/cpanel/bin/build_apache_conf
* /scripts/restartsrv_httpd
-----------------------------------------------------------------------------------------------------------
Il faut savoir que le certificat wildcard est un peu plus cher mais que si vous préférez utiliser des sous domaines différents pour vos CMS c’est un plus non négligeable.
Allons-y :
Tout d’abord cPanel ne gère pas de façon native la prise en charge et pour se faire il faut faire des modifications manuellement pour que cela fonctionne.1. Install the certificate via WHM, as root, via the "Install a SSL Certificate and Setup the Domain" link.
Les étapes sont relativement faciles : ---------------------------------------------------------------------------------------------------
* "User" should be "nobody"
* "Domain" should be "*.example.com".
2. In WHM -> Manage SSL Hosts, set the cert to be a shared cert.
3. In the cPanel for the user of the domain "example.com", create 2 subdomains (sub1 and sub2).
4. In the shell, as root, run these commands in order to generate the ssl file at /var/cpanel/userdata/$username/*.example.com_SSL:
* /usr/local/cpanel/bin/apache_conf_distiller --update
* /usr/local/cpanel/bin/build_apache_conf
* /scripts/restartsrv_httpd
5. copy /var/cpanel/userdata/$username/*.example.com_SSL file to sub1.example.com_SSL (and sub2.example.com_SSL, etc)
6. edit sub1.example.com_SSL (etc) to change the following 2 things:
* the "documentroot" line from /usr/local/apache/htdocs/ to /home/example/public_html/sub1/ (etc)
* the "servername" from "*.example.com" to "sub1.example.com" (etc) (with quotes).
7. copy the new file (.crt, .key ...etc)
cp /etc/ssl/certs/*.example.com.crt /etc/ssl/certs/www.example.com.crt cp /etc/ssl/certs/*.example.com.cabundle /etc/ssl/certs/www.example.com.cabundle cp /etc/ssl/private/*.examplecom.key /etc/ssl/private/www.example.com.key8. rebuild with
* /usr/local/cpanel/bin/apache_conf_distiller --update
* /usr/local/cpanel/bin/build_apache_conf
* /scripts/restartsrv_httpd
-----------------------------------------------------------------------------------------------------------
Aucun commentaire :
Enregistrer un commentaire