Want more timely Centmin Mod News Updates?
Become a Member

SSL What is the best way to install now the ssl certificate that i just got?

Discussion in 'Domains, DNS, Email & SSL Certificates' started by pamamolf, Jul 10, 2016.

  1. pamamolf

    pamamolf Well-Known Member

    2,487
    229
    63
    May 31, 2014
    Ratings:
    +390
    Local Time:
    2:42 PM
    Nginx-1.13.x
    MariaDB 10.1.x
  2. eva2000

    eva2000 Administrator Staff Member

    28,935
    6,567
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +9,747
    Local Time:
    9:42 PM
    Nginx 1.13.x
    MariaDB 5.5
    yup that's the one Nginx Vhost & NSD DNS Setup - CentminMod.com LEMP Nginx web stack for CentOS if you originally created your nginx vhost with self-signed ssl cert prompt = yes

     
  3. pamamolf

    pamamolf Well-Known Member

    2,487
    229
    63
    May 31, 2014
    Ratings:
    +390
    Local Time:
    2:42 PM
    Nginx-1.13.x
    MariaDB 10.1.x
    Trying to help my friend that he just move to Centminmod and all working great and he is very excited but he is not using on his Wordpress site https at all and he want me to install the certificate but for certain parts of the site that uses HTTPS; like the account and checkout pages.

    Any idea on how the main domain will not be https and use it only on some parts of it?
     
  4. eva2000

    eva2000 Administrator Staff Member

    28,935
    6,567
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +9,747
    Local Time:
    9:42 PM
    Nginx 1.13.x
    MariaDB 5.5
    will be problematic mixing https and http especially for sessions and checkouts. Probably best to do full https if it's a ecommerce site
     
    • Informative Informative x 1
  5. pamamolf

    pamamolf Well-Known Member

    2,487
    229
    63
    May 31, 2014
    Ratings:
    +390
    Local Time:
    2:42 PM
    Nginx-1.13.x
    MariaDB 10.1.x
    I got these files:
    Code:
    AddTrustExternalCARoot.crt
    COMODORSAAddTrustCA.crt
    COMODORSADomainValidationSecureServerCA.crt
    www_mydomain_com.crt
    Remind me please how to get the root.pem and the intermediate.crt so i can proceed with the installation...
     
  6. eva2000

    eva2000 Administrator Staff Member

    28,935
    6,567
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +9,747
    Local Time:
    9:42 PM
    Nginx 1.13.x
    MariaDB 5.5
    ;)
    and SSL - Compiled list of SSL certificate file name bundles | Centmin Mod Community
     
  7. pamamolf

    pamamolf Well-Known Member

    2,487
    229
    63
    May 31, 2014
    Ratings:
    +390
    Local Time:
    2:42 PM
    Nginx-1.13.x
    MariaDB 10.1.x
    Ok i think i found all info... :)

    But https is redirecting to http :(
     
    Last edited: Jul 10, 2016
  8. pamamolf

    pamamolf Well-Known Member

    2,487
    229
    63
    May 31, 2014
    Ratings:
    +390
    Local Time:
    2:42 PM
    Nginx-1.13.x
    MariaDB 10.1.x
    What am i missing ?
     
  9. eva2000

    eva2000 Administrator Staff Member

    28,935
    6,567
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +9,747
    Local Time:
    9:42 PM
    Nginx 1.13.x
    MariaDB 5.5
  10. pamamolf

    pamamolf Well-Known Member

    2,487
    229
    63
    May 31, 2014
    Ratings:
    +390
    Local Time:
    2:42 PM
    Nginx-1.13.x
    MariaDB 10.1.x
    Yes i have both as i think i can use them both at the same time.....?

    But when a user is using register form using https gets this:

    Code:
    123.456.789.000 does not have permission to use this key
     
  11. eva2000

    eva2000 Administrator Staff Member

    28,935
    6,567
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +9,747
    Local Time:
    9:42 PM
    Nginx 1.13.x
    MariaDB 5.5
    yes you can if you didn't setup any http to https redirects

    test your https:// SSL based domain via these SSL test sites:
    make sure you ssl certificate covers both www and non-www version of domain

    but your web app could be restricted to a base url protocol like http or https so doesn't allow both - ask your web app's developer(s)
     
    Last edited: Jul 10, 2016
    • Informative Informative x 1