Installation


Upgrades


DTC-Xen Installation


DTC-Xen / Dom0 Howtos

DTC-Xen / DomU Howtos

FAQ


DTC Howtos


Manuals


Features


Roadmap


Devel docs


Wiki - i18n


Wiki - Meta


DTCSslCert

How to set up the main DTC SSL Cert.

this page is a collection of links to other sites and notes on how to set up and test your panels main ssl cert for dtc.yourdomain.tld and your mail server.

See: http://forums.gplhost.com/fudforum/t/3060/-ssl-certificate- http://www.wonderfullymadesites.com/articles/install-ssl-certificate-dtc-admin-panel(approve sites)

Goto DTC General Configuration --> General --> Web interface

Make sure you have 'Use SSL" set to Yes.

Remember that if you make changes here you have to wait until the next cron job executes before they become active.

Checking:

/etc/apache2# nano /var/lib/dtc/etc/vhosts.conf

If you got it right you should see the following in your vhosts file...

Listen <Your Sites Main IP>:443

This extract should also appear. <VirtualHost <Your Site Main IP>:443>

        ServerName dtc.yournet.co.nz
        SSLEngine on
        SSLCertificateFile /var/lib/dtc/etc/ssl/new.cert.cert
        SSLCertificateKeyFile /var/lib/dtc/etc/ssl/new.cert.key

Testing:

Use the following command to see what the web server is listening on:

  1. netstat -antop | grep apache

If should give you something like this.

tcp 0 0 127.0.0.1:443 0.0.0.0:* LISTEN 20895/apache2 off (0.00/0/0) tcp 0 0 202.68.81.109:443 0.0.0.0:* LISTEN 20895/apache2 off (0.00/0/0) tcp 0 0 202.68.81.107:443 0.0.0.0:* LISTEN 20895/apache2 off (0.00/0/0)

In this case it tells us that the web server is listening for ssl on 202.68.81.109 and 202.68.81.107.

In the case of my server the above was wrong. My main IP was 202.68.81.106 so I should have seen this:

 /etc/apache2# netstat -antop | grep apache

tcp 0 0 127.0.0.1:80 0.0.0.0:* LISTEN 20895/apache2 off (0.00/0/0) tcp 0 0 202.68.81.109:80 0.0.0.0:* LISTEN 20895/apache2 off (0.00/0/0) tcp 0 0 202.68.81.108:80 0.0.0.0:* LISTEN 20895/apache2 off (0.00/0/0) tcp 0 0 202.68.81.107:80 0.0.0.0:* LISTEN 20895/apache2 off (0.00/0/0) tcp 0 0 202.68.81.106:80 0.0.0.0:* LISTEN 20895/apache2 off (0.00/0/0) tcp 0 0 202.68.81.106:443 0.0.0.0:* LISTEN 20895/apache2 off (0.00/0/0) tcp 0 0 127.0.0.1:443 0.0.0.0:* LISTEN 20895/apache2 off (0.00/0/0) tcp 0 0 202.68.81.109:443 0.0.0.0:* LISTEN 20895/apache2 off (0.00/0/0) tcp 0 0 202.68.81.107:443 0.0.0.0:* LISTEN 20895/apache2 off (0.00/0/0)

You can now see 202.68.81.106:443 in there.

In my case I hadn't selected 'use ssl'. I can now force SSL if I choose to.

This is where you'll find the configuration:

/var/lib/dtc/etc/vhosts.conf

This file is referenced by your apache's conf file.

Page last modified on October 13, 2015, at 02:03 AM EST