helpchrisplz
asked on
SSL - DNS - i switched to a dedicated IP
Hi i have an ecommerce website set up on a dedicated server that as more than 10 domains set up.
The dedi server runs plesk 11. centOS
its my first time installing a SSL cert so i just need some reassurance that what i have done is correct.
i read that i must have a dedicated ip for the ecommerce site so the SSL will work. i have added another IP to the dedi box and logged in to plesk to assign the new ip to the ecommerce site.
As soon as i changed the ip from the shared over to the new ip i got a message saying the ip doesn't resolve for the domain and i should fix the dns settings.
i guessed that this was just a warning as the dns had not transferred over to the new ip yet? so should just wait and the problem should be ok.
My other concern is: do i need to reupload the site to the new ip address? or will plesk do this automatically?
The dedi server runs plesk 11. centOS
its my first time installing a SSL cert so i just need some reassurance that what i have done is correct.
i read that i must have a dedicated ip for the ecommerce site so the SSL will work. i have added another IP to the dedi box and logged in to plesk to assign the new ip to the ecommerce site.
As soon as i changed the ip from the shared over to the new ip i got a message saying the ip doesn't resolve for the domain and i should fix the dns settings.
i guessed that this was just a warning as the dns had not transferred over to the new ip yet? so should just wait and the problem should be ok.
My other concern is: do i need to reupload the site to the new ip address? or will plesk do this automatically?
http://www.jrfox.co.uk/ seems to work fine on my end. Did you install the cert? I get errors with https.
ASKER
it says its Awaiting Verification.
will the site automatically just go to the padlock once i install fully?
or do i need to redirect to the secure version some how?
will the site automatically just go to the padlock once i install fully?
or do i need to redirect to the secure version some how?
I have plesk on a windows server. Going from memory:
1) Generate the CSR in Plesk
2) Paste the CSR to where I am buying the Cert
3) The cert issuer will require some type of verification. This could be an email to the domain, uploading a special html file or placing some meta data in the head tag.
4) Once verified, the issuer will email you the certificate or they will show it to you on their site.
5) Depending on the issuer, you may have to install an intermediate cert.
6) In Plesk, go back to the ssl area and update the cert and if required the intermediate cert.
7) You will have to delete the old cert (click the check box and choose remove)
8) Make the current cert active.
If you get stuck on any of these steps, let us know.
1) Generate the CSR in Plesk
2) Paste the CSR to where I am buying the Cert
3) The cert issuer will require some type of verification. This could be an email to the domain, uploading a special html file or placing some meta data in the head tag.
4) Once verified, the issuer will email you the certificate or they will show it to you on their site.
5) Depending on the issuer, you may have to install an intermediate cert.
6) In Plesk, go back to the ssl area and update the cert and if required the intermediate cert.
7) You will have to delete the old cert (click the check box and choose remove)
8) Make the current cert active.
If you get stuck on any of these steps, let us know.
ASKER
i verified by using a email on the domain.
i now have the Certificate and i have added it to the domain but i can see that the Certificate CA box is empty and the sites still dont work on https
is it normal not to get a CA?
i now have the Certificate and i have added it to the domain but i can see that the Certificate CA box is empty and the sites still dont work on https
is it normal not to get a CA?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
yes. i found it in the hosting settings part on plesk just had to select the cert and make sure ssl was switched on.
the site now works! yey.
it doesn't automatically switch to https though do you know of a way to force it to load of the https?
the site now works! yey.
it doesn't automatically switch to https though do you know of a way to force it to load of the https?
ASKER
might have to update the site url in the database i think
You should be able to do this in php or your htaccess file
RewriteCond %{HTTPS} !=on
RewriteRule ^/(.*) https://%{SERVER_NAME}/$1 [R,L]
RewriteCond %{HTTPS} !=on
RewriteRule ^/(.*) https://%{SERVER_NAME}/$1 [R,L]
ASKER
thanks
i found that the only way i could force https was to change the unsecure base url to be the secure one in the database.
UPDATE `core_config_data` SET `value`='https://www.example.com' WHERE `path`='web/unsecure/base_ url';
i found that the only way i could force https was to change the unsecure base url to be the secure one in the database.
UPDATE `core_config_data` SET `value`='https://www.example.com' WHERE `path`='web/unsecure/base_
ASKER
will this just fix its self with time?
The site did show the working ecommerce site before doing the ip change.