SSL cert work across multiple ports?

3 posts / 0 new
Last post
#1 Wed, 06/10/2009 - 20:47
jahlewis

SSL cert work across multiple ports?

I suspect this is a newbie question, but here goes. What is the best practice for using a cert on a virtualmin server with one IP?

My server has one external IP to use with multiple virtual servers. If I want to get a SSL cert from a trusted authority, can I do the following:

  1. get a cert for the IP and a URL being server.domainname
  2. redirect webmail to point to the above URL:20000
  3. redirect admin to point to the above URL:10000

Questions:

  1. since the above are miniserv based, where would instal/configurel the cert?
  2. will this work? Users who go to http://admin.domainname would get redirected to https://server.domainname:10000 and not get prompted for the cert acceptance? (and the same for webmail.domainname?)

What is the best way to do this?

Thanks

Wed, 06/10/2009 - 21:28
andreychek

Howdy,

What you're offering above sounds reasonable -- but I'm going to restate it in my own words just to make sure we're on the same page ;-)

Unless you start getting into wildcard SSL certificates, you can only have on SSL cert per IP.

But the port you're accessing doesn't matter.

If you buy an SSL cert for "example.com", that means it'll work just fine for your website at https://example.com, Virtualmin at https://example.com:10000, and Usermin at https://example.com:20000.

You would then go into System Settings -> Server Templates -> Default -> Apache Website, and setup the admin and webmail redirects to use the above URL's. So long as the redirects are going to a site with a valid SSL cert, your users won't receive a warning message.

When you setup the SSL cert in Virtualmin (in Services -> Manage SSL Certificate), there's options on that screen to copy the cert to Webmin and Usermin.

Just yell if you have any other questions, -Eric

Wed, 06/10/2009 - 21:56
jahlewis

we are on the same page. This is exactly what I was thinking. Thanks.

Topic locked