Improve company productivity with a Business Account.Sign Up

x
?
Solved

SSL - DNS - i switched to a dedicated IP

Posted on 2013-11-24
10
Medium Priority
?
524 Views
Last Modified: 2013-11-24
Hi i have an ecommerce website set up on a dedicated server that as more than 10 domains set up.

The dedi server runs plesk 11. centOS

its my first time installing a SSL cert so i just need some reassurance that what i have done is correct.

i read that i must have a dedicated ip for the ecommerce site so the SSL will work. i have added another IP to the dedi box and logged in to plesk to assign the new ip to the ecommerce site.

As soon as i changed the ip from the shared over to the new ip i got a message saying the ip doesn't resolve for the domain and i should fix the dns settings.

i guessed that this was just a warning as the dns had not transferred over to the new ip yet? so should just wait and the problem should be ok.

My other concern is: do i need to reupload the site to the new ip address? or will plesk do this automatically?
0
Comment
Question by:helpchrisplz
  • 6
  • 4
10 Comments
 
LVL 1

Author Comment

by:helpchrisplz
ID: 39672766
since i changed the ip over to the new dedicated one the site is just showing the default blue plesk page that you get when you first set up a domain: http://www.jrfox.co.uk/

will this just fix its self with time?

The site did show the working ecommerce site before doing the ip change.
0
 
LVL 55

Expert Comment

by:Scott Fell, EE MVE
ID: 39672791
http://www.jrfox.co.uk/ seems to work fine on my end.  Did you install the cert?  I get errors with https.
0
 
LVL 1

Author Comment

by:helpchrisplz
ID: 39672801
it says its Awaiting Verification.

will the site automatically just go to the padlock once i install fully?

or do i need to redirect to the secure version some how?
0
Improved Protection from Phishing Attacks

WatchGuard DNSWatch reduces malware infections by detecting and blocking malicious DNS requests, improving your ability to protect employees from phishing attacks. Learn more about our newest service included in Total Security Suite today!

 
LVL 55

Expert Comment

by:Scott Fell, EE MVE
ID: 39672817
I have plesk on a windows server.    Going from memory:

1) Generate the CSR in Plesk

2) Paste the CSR to where I am buying the Cert

3) The cert issuer will require some type of verification.  This could be an email to the domain, uploading a special html file or placing some meta data in the head tag.

4) Once verified, the issuer will email you the certificate or they will show it to you on their site.

5) Depending on the issuer, you may have to install an intermediate cert.

6) In Plesk, go back to the ssl area and update the cert and if required the intermediate cert.

7) You will have to delete the old cert (click the check box and choose remove)

8) Make the current cert active.

If you get stuck on any of these steps, let us know.
0
 
LVL 1

Author Comment

by:helpchrisplz
ID: 39672838
i verified by using a email on the domain.

i now have the Certificate and i have added it to the domain but i can see that the Certificate CA box is empty and the sites still dont work on https

is it normal not to get a CA?
0
 
LVL 55

Accepted Solution

by:
Scott Fell,  EE MVE earned 2000 total points
ID: 39672853
It depends on the issuer.  If they don't require one, then you don't need it.  Once you click the "send" button, both box's will be empty and you will only see the certificate info below.

Your last step is to go to websites and domains. Click on the domain name and then check the box, "Enable SSL support".  This step is not very intuitive.
0
 
LVL 1

Author Comment

by:helpchrisplz
ID: 39672861
yes. i found it in the hosting settings part on plesk just had to select the cert and make sure ssl was switched on.

the site now works! yey.

it doesn't automatically switch to https though do you know of a way to force it to load of the https?
0
 
LVL 1

Author Comment

by:helpchrisplz
ID: 39672873
might have to update the site url in the database i think
0
 
LVL 55

Expert Comment

by:Scott Fell, EE MVE
ID: 39672883
You should be able to do this in php or your htaccess file

RewriteCond %{HTTPS} !=on
RewriteRule ^/(.*) https://%{SERVER_NAME}/$1 [R,L]
0
 
LVL 1

Author Closing Comment

by:helpchrisplz
ID: 39672915
thanks

i found that the only way i could force https was to change the unsecure base url to be the secure one in the database.

UPDATE `core_config_data` SET `value`='https://www.example.com' WHERE `path`='web/unsecure/base_url';
0

Featured Post

Easily Design & Build Your Next Website

Squarespace’s all-in-one platform gives you everything you need to express yourself creatively online, whether it is with a domain, website, or online store. Get started with your free trial today, and when ready, take 10% off your first purchase with offer code 'EXPERTS'.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

When it comes to security, close monitoring is a must. According to WhiteHat Security annual report, a substantial number of all web applications are vulnerable always. Monitis offers a new product - fully-featured Website security monitoring and pr…
This applies to Dell but may also apply to other manufacturers as well. We ran across a few machines that just dropped recently it trust relationship with the server. After doing the basic removing and joining the domain again, it changed to No logo…
The video will let you know the exact process to import OST/PST files to the cloud based Office 365 mailboxes. Using Kernel Import PST to Office 365 tool, one can quickly import numerous OST/PST files to Office 365. Besides this, the tool also comes…
Watch the working video to know how to import Outlook PST/OST files to Amazon WorkMail. Kernel released this tool which is very easy to use and migrate single or multiple PST and OST files to Amazon WorkMail. To know more about Kernel Import PST to …

607 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question