Use domain-specific SSL certificates in Virtualmin?

5 posts / 0 new
Last post
#1 Tue, 10/04/2016 - 08:29
castwide

Use domain-specific SSL certificates in Virtualmin?

I have a Virtualmin server hosting customers on a shared IP address. There's an SSL certificate configured for Webmin, and the customer sites have their own certificates. I can access Virtualmin through the primary host, e.g., https://server.com:10000; but if I try to get there through https://customer.com:10000, the browser throws a warning because it received the certificate for server.com instead. Is there a way to make Virtualmin use the certificate belonging to the domain in the URL?

Tue, 10/04/2016 - 08:54
unborn
unborn's picture

hi castwide.. yes for gpl (i am not sure for pro version) you can install your ssl for webmin or/and virtualmin only to one domain.. as an pro I would suggest you to install your cert to your main domain eg: https://server.com:10000 and use that as your primary login for virtualmin or your hosting cp.. customer.com:10000 is irrelevant in this case and you should be prepared to firmly explain to your client/s or and customer/s that they should be logging into server via your central domain server.com:port and not on its own domains...in this case you can track it everything on one log also protect it if need it too and all other benefits.. - on gpl I am 100% sure its not possible otherwise, but however I could be still very wrong.. anyway this solution would make your life easier (most hosting companies have one central login for things like that.. its just advice). - btw state that in your tc as well on your site and/or in your contracts.

Have good day.

Configuring/troubleshooting Debian servers is always great fun

Tue, 10/04/2016 - 09:15
castwide

Thanks, unborn. I had a feeling it wasn't feasible. I was a little concerned about the URL being easy to remember, but I can just redirect admin.customer.com to server.com:10000.

Tue, 10/04/2016 - 09:44
jimdunn

Actually, I have customers that say they used to be with another hosting service that used PLESK, and they never had these kind of domain/ssl issues.

In fact, they complain the most about the SSL issues with email... not able to use their domain name for IMAP and SMTP.

Is this true? Do other control panels configure each users' domain such that they can access the control panel and SSL email using their own domain name?

Tue, 10/04/2016 - 11:49
castwide

I don't know about Plesk, but I can confirm that cPanel redirects to the primary domain, e.g., from customer.com/cpanel to server.com:2096. I just double-checked on a GoDaddy shared hosting account.

It looks like shared accounts on cPanel also use the primary domain when configuring SSL email clients. If your customers were able to use their own domains, I suspect they had dedicated IP addresses.

Topic locked