I have moved a website to another server and I have an SSL certificate from godaddy. SSL was working fine on an old server, maintained by my predecessor. Now on a new server I've regenerated the certificate following godaddy's instructions and I have modified ssl.conf file as instructed, but when I go to the part of the website that's supposed to support SSL I still get that "untrusted certificate". If I add it as trusted, everything works fine, but it looses the point of trusted certificate.
What's even more weird is that on the old server ssl.conf file is default, so how come the certificate is working fine on it then? Are there any other ways to install SSL certificate than modifying ssl.conf?
Changes that I made to the ssl.conf:
DocumentRoot "/var/www/vhosts/domain.com/httpdocs"
ServerName www.domain.com:443
SSLCertificateFile /var/www/vhosts/domain.com/private/domain.com.crt
SSLCertificateKeyFile /usr/bin/domain.com.key
SSLCACertificateFile /var/www/vhosts/domain.com/private/gd_bundle.crt
AllowOverride All
Is there something I'm doing wrong?
==================================================================================
UPDATE: as suggested, I added the line to enable godaddys bundle certificate in my ssl.conf:
SSLCertificateChainFile /var/www/vhosts/domain.com/private/gd_bundle.crt
and commented out the line:
#SSLCACertificateFile /var/www/vhosts/domain.com/private/gd_bundle.crt
Everything is still the same, certificate is untrusted...
UPDATE2: I accepted the certificate and viewed it, and it's not mine, it says "Plesk" is the owner. For some reason Plesk is stuffing it's certificate, can I remove it somehow? Sorry for confusion...
UPDATE3: I looked at ssl_error_log and this is what it says:
[Sat Sep 03 12:37:36 2011] [warn] RSA server certificate CommonName (CN) `www.domain.com' does NOT match server name!?
What's that suppose to mean?
UPDATE4: If I change
to
when I try to access the page the browser pops up the open/save dialog for php source file?!? This is just insane...
No comments:
Post a Comment