[BlueOnyx:06287] Re: help with wild card SSL cert install

Ken - Precision Web Hosting, Inc kenlists at precisionweb.net
Mon Jan 10 13:48:24 -05 2011 

----- Original Message ----- 
From: Jim Dory

On 1/7/2011 10:51 PM, Doug Harvey wrote:
Hey Jim.  I had issues with installing certs on BQ, so this will be an 
interesting read.

Doug


On Fri, Jan 7, 2011 at 12:04 PM, Jim Dory <jdory at nomealaska.org> wrote:

 Hoping someone can offer some advice or answers to installing a wild
card SSL certificate.


Might not be much of a read as no one has really offered anything yet. One 
guy suggested offlist not doing a wildcard - and that may be the direction I 
go. Maybe I'll just do a regular one for webmail.nomealaska.org.

The GUI has a way to create a request and to install certs, so perhaps I'll 
try that first. If it doesn't work I'll try whatever other methods I find 
online - not many specific to BlueOnyx. I did install one just a bit over a 
year ago but didn't take good notes on how I did it. Assuming you were 
eventually successful? Any caveats to share?

/jd

-- 
Jim Dory

>>

Jim

>From the comand line, for the siteadmin ssl, the method I use  is

cd /etc/admserv
openssl req -new -newkey rsa:2048 -keyout key -nodes -out request
Generating a 2048 bit RSA private key
..........................................+++
..............+++
writing new private key to 'key'
-----
You are about to be asked to enter information that will be incorporated
into your certificate request.
What you are about to enter is what is called a Distinguished Name or a DN.
There are quite a few fields but you can leave some blank
For some fields there will be a default value,
If you enter '.', the field will be left blank.
-----
Country Name (2 letter code) [GB]:US
State or Province Name (full name) [Berkshire]:California
Locality Name (eg, city) [Newbury]:Valley Center
Organization Name (eg, company) [My Company Ltd]:Precision Web Hosting, Inc.
Organizational Unit Name (eg, section) []:WebDev
Common Name (eg, your name or your server's hostname) []:*.secure-access.net
Email Address []:ssladmin at precisionweb.net
Please enter the following 'extra' attributes
to be sent with your certificate request
A challenge password []:
An optional company name []:
?
?
cat request



The "request" is the CSR. After you get the certificate then I copy in the 
cerfiticate, key, and request to the certs directory.  Then from the GUI, 
import the  certificate 2, certificate 1, then root cert in that order.


----
Ken M
Precision Web Hosting, Inc.
http://www.precisionweb.net

More information about the Blueonyx mailing list