Author Topic: Want to install Wildcard SSL in CWP  (Read 2613 times)

0 Members and 1 Guest are viewing this topic.

Want to install Wildcard SSL in CWP
« on: March 04, 2018, 11:33:56 AM »

I want to install wildcard SSL in CWP. Can anyone tell me how to do this or point me to any tutorial?

Re: Want to install Wildcard SSL in CWP
« Reply #1 on: March 15, 2018, 08:11:12 PM »
This is very hard. I whink they should take this easy to us. I will post the problems I have facing with this in another thread.

To install a Wildcard SSL, first, you generate a CSR. You need to use * in CN. The file will be generated with "*." in name, this is your first problem, because it is not recognized by panel.
Login in SSH and rename file "*" to just "". Do the same with key file.
These files are located in "/etc/pki/tls/certs" and "/etc/pki/tls/private".
After this, get your CSR and order your certificate.
After you receive your certificate, you must paste the certificate in file "" inside "/etc/pki/tls/certs". I don't remember if this file is created empty. If not, create yourself using panel file manager.

When you go to install your cert for your domain, the panel suggest the "*" as domain, you need use only "" as domain, otherwise, will not work. This is the second problem, because the panel use the domain name you specify as file name.

When you go to install the certificate for other subdomains of your domain, the panel use a diferent file for each subdomain, but this certificate is a Wildcard, there is no sense to use diferent filenames for this, just specify other domain and your are ok.
In this case, you will need to copy the content of certificate file to this new created subdomain file, and for the bundle file too.

The bundle file must contain the certificate for your domain (the one you bought) and below the root certificate from your certificate provider.

This is a bit confusing.

Re: Want to install Wildcard SSL in CWP
« Reply #2 on: April 30, 2018, 03:09:28 PM »
Hi Could you please breakdown the steps to install Wildcard SSL.

I am having issues doing the process, and I really do not know what content I should be copying where.
-Mohammed Wasayuddin Ahmed

Re: Want to install Wildcard SSL in CWP
« Reply #3 on: April 30, 2018, 04:34:16 PM »
Unfortunately I was not able to install Wildcard SSL by any mean and CWP team was not helping regarding this.

So, I have to pay CWP team to install WC SSL.  :(

Re: Want to install Wildcard SSL in CWP
« Reply #4 on: November 27, 2018, 10:40:21 AM »
1 Log into your CWP admin area and locate 'Apache Settings' from the left-hand navigation menu

2 Select the 'SSL Certificates' option from 'Apache Settings' and switch to the 'Manual Install' tab

3 Now choose your domain name from the drop-down list provided.

4 Next, copy the certificate code you received by email from Comodo including the -----BEGIN CERTIFICATE----- and -----END CERTIFICATE----- tags, pasting it to the 'Certificate' box. The code can be found in the file with .crt extension or you can copy it directly from the email you received.

5 Paste your Private Key code into the corresponding box. It should look like a block of code with the header -----BEGIN PRIVATE KEY----- and footer -----END PRIVATE KEY----. Please make sure to use the same Private Key code that was generated with your CSR code.

Note: If your CSR/Private Key pairing was generated in CentOS Web Panel (CWP), the key will be automatically fetched by the system when you select your domain name. If for some reason it does not happen automatically, the key can also be found via this path: File Manager -> etc -> pki -> tls -> private.

6 Now copy and paste the chain of intermediate certificates (CA Bundle) into the 'Certificate Authority' box. Alternatively, you can select the 'Generate Intermediate Certificates' button.

7 Click the 'Validate Certificate' button to ensure the certificate matches the Private Key.

8 Click 'Save'.

Re: Want to install Wildcard SSL in CWP
« Reply #5 on: November 27, 2018, 03:10:21 PM »
Also, don't forget to add following line in NGINX config file located at "/etc/nginx/conf.d" if you are using NGINX too.

Code: [Select]
server_name *;