This forum uses cookies
This forum makes use of cookies to store your login information if you are registered, and your last visit if you are not. Cookies are small text documents stored on your computer; the cookies set by this forum can only be used on this website and pose no security risk. Cookies on this forum also track the specific topics you have read and when you last read them. Please confirm whether you accept or reject these cookies being set.

A cookie will be stored in your browser regardless of choice to prevent you being asked this question again. You will be able to change your cookie settings at any time using the link in the footer.

SSL Multi Sub Domains
#1
SSL Multi Sub Domains
Hello,

I just want to confirm something before installing Let's Encript SSL.

Let's say I want to add SSL to my sentora panel, www and the domain.com itself.

Do I need to repeat this code separatly for the three or there's a way I can do it into one string ?
Code:
service apache2 stop

./letsencrypt-auto certonly --standalone -d panel.domain.com

service apache2 start

Code:
service apache2 stop

./letsencrypt-auto certonly --standalone -d www.domain.com

service apache2 start
Code:
service apache2 stop

./letsencrypt-auto certonly --standalone -d domain.com

service apache2 start


And after can insert this code into the Custom Entry so it will encrypt the three versions of the domain name?:
Code:
SSLEngine on

SSLProtocol ALL -SSLv2 -SSLv3

SSLHonorCipherOrder On

SSLCipherSuite ECDH+AESGCM:DH+AESGCM:ECDH+AES256:DH+AES256:ECDH+AES128:DH+AES:ECDH+3DES:DH+3DES:RSA+AESGCM:RSA+AES:RSA+3DES:!aNULL:!MD5:!DSS

SSLCertificateFile /etc/letsencrypt/live/panel.domain.com/cert.pem

SSLCertificateKeyFile /etc/letsencrypt/live/panel.domain.com/privkey.pem

SSLCertificateChainFile /etc/letsencrypt/live/panel.domain.com/chain.pem

SSLCertificateFile /etc/letsencrypt/live/www.domain.com/cert.pem

SSLCertificateKeyFile /etc/letsencrypt/live/www.domain.com/privkey.pem

SSLCertificateChainFile /etc/letsencrypt/live/www.domain.com/chain.pem

SSLCertificateFile /etc/letsencrypt/live/domain.com/cert.pem

SSLCertificateKeyFile /etc/letsencrypt/live/domain.com/privkey.pem

SSLCertificateChainFile /etc/letsencrypt/live/domain.com/chain.pem

# Keeping bellow for future upgrades.

# Requires Apache >= 2.4

SSLCompression off


Thanks for your time,
Sincerely,
Reply
Thanks given by:
#2
RE: SSL Multi Sub Domains
That would make 3 certificates.

I suggest re-reading the tutorials.


As per the instructions, you would need to do the panel sub domain as one certificate and the domain/www.domain would be another certificate:
Code:
service apache2 stop

./letsencrypt-auto certonly --standalone -d domain.com -d www.domain.com

service apache2 start

You DO NOT put all the certificates in one custom vhost entry.
You add the certificates to the individual domain's related custom vhost.

You are trying to combine the two processes (panel SSL and domain SSL) which is not possible.

It may be possible to combine them all in one certificate, but you would have to check with Let's Encrypt.
-TGates - Project Council

SEARCH the Forums or read the DOCUMENTATION before posting!
Support Sentora and Donate: HERE

Find my support or modules useful? Donate to TGates HERE
Developers and code testers needed!
Contact TGates for more information
Reply
Thanks given by: cybertec
#3
RE: SSL Multi Sub Domains
(02-13-2017, 06:50 AM)TGates Wrote: That would make 3 certificates.

I suggest re-reading the tutorials.


As per the instructions, you would need to do the panel sub domain as one certificate and the domain/www.domain would be another certificate:
Code:
service apache2 stop

./letsencrypt-auto certonly --standalone -d domain.com -d www.domain.com

service apache2 start

You DO NOT put all the certificates in one custom vhost entry.
You add the certificates to the individual domain's related custom vhost.

You are trying to combine the two processes (panel SSL and domain SSL) which is not possible.

It may be possible to combine them all in one certificate, but you would have to check with Let's Encrypt.

Tgates,

Can i use also certbot-auto   and seperate the panel configuration from httpd-vhost.conf?

example:
httpd-panel-ssl.conf
listen 443
with of course the key for panel.topmatica.nl

&

httpd-vhost.conf
Listen 443
Listen 80

with vhost for customers who are using http and https
Reply
Thanks given by:
#4
RE: SSL Multi Sub Domains
(08-10-2018, 05:38 AM)inkoop@topmatica.nl Wrote: Tgates,

Can i use also certbot-auto   and seperate the panel configuration from httpd-vhost.conf?

[snip]

with vhost for customers who are using http and https

You can, but you don't need to split the vhosts. Just use the tutorial and use custom virtualhost override entries. It is much easier IMHO.
-TGates - Project Council

SEARCH the Forums or read the DOCUMENTATION before posting!
Support Sentora and Donate: HERE

Find my support or modules useful? Donate to TGates HERE
Developers and code testers needed!
Contact TGates for more information
Reply
Thanks given by: inkoop@topmatica.nl


Possibly Related Threads…
Thread Author Replies Views Last Post
Postfix relay specific domains to mailjet johnnyp 0 2 ,006 01-29-2021, 04:44 AM
Last Post: johnnyp
Disabling warning and notice logging in /var/sentora/logs/domains/* JSmith 0 2 ,436 01-02-2021, 07:50 PM
Last Post: JSmith
Add on Domains not working but Main domain works luckyviet 2 5 ,426 03-18-2020, 07:38 PM
Last Post: AanaNahum

Forum Jump:


Users browsing this thread: 1 Guest(s)