The results are in! Meet the top members of our 2017 Expert Awards. Congratulations to all who qualified!
Solved
SSL cert purchase and installation for Cpanel
Posted on 2008-09-30
I'm installing my first certificate (there are others on our server but i did not install them).
I purchased thru SBS an Instant cheap one, since this is just for web forms.
In the end, i get the following WHM error message:
Modulus mismatch, key file does not match certificate. Please use the correct key file
How does one debug something like this?
Is there an overview diagram of:
1. what fields are supposed to match (perhaps when i entered the data, i put an extra space in the street address or something like that) - i cannot tell what is "important" spelling-wise, etc.
2. is there a diagram for where the three certificates (CRT, RSA, CA) are generated?
3. where do (did) i specify whether or not to use "www." prefix?
thanks
I purchased thru SBS an Instant cheap one, since this is just for web forms.
In the end, i get the following WHM error message:
Modulus mismatch, key file does not match certificate. Please use the correct key file
How does one debug something like this?
Is there an overview diagram of:
1. what fields are supposed to match (perhaps when i entered the data, i put an extra space in the street address or something like that) - i cannot tell what is "important" spelling-wise, etc.
2. is there a diagram for where the three certificates (CRT, RSA, CA) are generated?
3. where do (did) i specify whether or not to use "www." prefix?
thanks
2 Comments
The modulus is the cryptographic algorithm used to create the public/private keypair. If these do not match then either it got corrupted somehow, or more likely you might have generated another CSR (Certificate Signing Request) or removed the original CSR prior to installing the commercial cert.
When you issue a cert, you do it for the server - when you created it may have just been issued to the server name. It should have been issued to the server's FQDN instead (www.yourdomain.com). If this was not done, you would need to get another cert with the correct name. To double check, open up the cert (just double click it) and look at the general tab - if this matches, great, if not then you might also check the Details tab for Subject Alternate Name to see if there might be other names listed there that might match properly.
If you do need to reissue, don't worry. Most commercial CA's understand that problems happen, just call them up or email them and explain the situation and they will normally work with you to get a new CSR created properly and issue a new cert for free (since you already paid for it before - they would just revoke the bad cert). I haven't heard of one yet that doesn't not operate this way.
http://www.cpanel.net/support/docs/11/cpanel/sec_ssl.html
http://www.cpanel.net/support/docs/11//whm/ssl_tls_install_domain.html
You can also try to delete the SSL Host entry in WHM/cPanel by hitting the delete button under the domain ( Main >> SSL/TLS >> Manage SSL Hosts ).
When you issue a cert, you do it for the server - when you created it may have just been issued to the server name. It should have been issued to the server's FQDN instead (www.yourdomain.com). If this was not done, you would need to get another cert with the correct name. To double check, open up the cert (just double click it) and look at the general tab - if this matches, great, if not then you might also check the Details tab for Subject Alternate Name to see if there might be other names listed there that might match properly.
If you do need to reissue, don't worry. Most commercial CA's understand that problems happen, just call them up or email them and explain the situation and they will normally work with you to get a new CSR created properly and issue a new cert for free (since you already paid for it before - they would just revoke the bad cert). I haven't heard of one yet that doesn't not operate this way.
http://www.cpanel.net/support/docs/11/cpanel/sec_ssl.html
http://www.cpanel.net/support/docs/11//whm/ssl_tls_install_domain.html
You can also try to delete the SSL Host entry in WHM/cPanel by hitting the delete button under the domain ( Main >> SSL/TLS >> Manage SSL Hosts ).
Featured Post
Question has a verified solution.
Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.
Have a better answer? Share it in a comment.
Join & Write a Comment Already a member? Login.
Imagine a situation that you have installed SSL (http://en.wikipedia.org/wiki/Secure_Sockets_Layer) Certificate on your Cisco ASA (Cisco Adaptive Security Appliance) firewall. Installation of SSL certificate on ASA is an another topic for which you …
#SSL #TLS #Citrix #HTTPS #PKI #Compliance #Certificate #Encryption #StoreFront #Web Interface #Citrix XenApp
Watch the video to learn how one can deal with PST file corruption issue with an outstanding Kernel for Outlook PST Repair Tool easily. Using this tool, non-technical users can swiftly perform the repair process to restore their essential data witho…
When you have multiple client accounts to manage, it often feels like there aren’t enough hours in the day. With too many applications to juggle, you can’t focus on your clients, much less your growing to-do list. But that doesn’t have to be the cas…
Suggested Courses
Course of the Month11 days, 8 hours left to enroll
601 members asked questions and received personalized solutions in the past 7 days.
Join the community of 500,000 technology professionals and ask your questions.