Hello,

for a client I installed a certificate. This is a official certificate. It is from thawte.
I sent the Request to thawte and imported the CA from thawte. But all the times, all Browser says, "Error" It is a Certificate from the website self. But this is wrong.

you can see this: https://shop-schwarzes-gesoxx.de

How can I repair this?

By the way I changed the CA and got a new CA for a new Request.


Thanks a lot


André

Does “openssl req –text –noout –in <your certificate file>” display Thawte as the issuer?

Even in the explorer he says that thawte isn´t the issuer.

I will look into the file, but I think not.:(

After the install of cert did you try to restart apache. You might try that.

you need to call the domain with the "www" since you bought the ssl certificate with www included in the domain

Yes I did a restart, but not because the installation of ther cert. But it was after I installed the cert. Okay, I retry it :-)

No wíth www. is nothing changed. Still the problem.

Now I tried this:

1: I deleted the cert
2: I pasted the Request (I saved them before) into Request
3: I pasted the cert into cert

Result: error!! The website cannot displayed.

Yes I did a restart, but not because the installation of ther cert. But it was after I installed the cert. Okay, I retry it :-)

No wíth www. is nothing changed. Still the problem.
it was working here with the www. I got just one error before only due to the missing www in the url.

Sorry but here I saw the wrong cert. And the client too.
Evrey time the browser says it is a self criated cert. :-(

Ok I saw the error, I forgot I accepted the certificate one time so the url with www was giving no error since I already accepted the certificate.
Actually yes it is the self signed certificate which appear and not the Thawte one.
I already use a Thawte certificate for 2 of my sites and it works correctly with adding them simply in ispconfig, so if you follow the instructions for ssl certificate for ispconfig then it should be ok. You may need to restart apache after adding the ssl certificate, but it was fixed just in the last ispconfig version normally so it should reboot itself.

Yo, after a restart the apache was down and not restartable.

The error log show this:
[Sun Sep 16 06:25:07 2007] [error] Init: Unable to read server certificate from file /var/www/web24/ssl/www.shop-schwarzes-gesoxx.de.crt
[Sun Sep 16 06:25:07 2007] [error] SSL Library Error: 218529960 error:0D0680A8:asn1 encoding routines:ASN1_CHECK_TLEN:wrong tag
[Sun Sep 16 06:25:07 2007] [error] SSL Library Error: 218595386 error:0D07803A:asn1 encoding routines:ASN1_ITEM_EX_D2I:nested asn1 error
[Sun Sep 16 10:27:52 2007] [error] Init: Unable to read server certificate from file /var/www/web24/ssl/www.shop-schwarzes-gesoxx.de.crt
[Sun Sep 16 10:27:52 2007] [error] SSL Library Error: 218529960 error:0D0680A8:asn1 encoding routines:ASN1_CHECK_TLEN:wrong tag
[Sun Sep 16 10:27:52 2007] [error] SSL Library Error: 218595386 error:0D07803A:asn1 encoding routines:ASN1_ITEM_EX_D2I:nested asn1 error
[Sun Sep 16 10:28:33 2007] [error] Init: Unable to read server certificate from file /var/www/web24/ssl/www.shop-schwarzes-gesoxx.de.crt
[Sun Sep 16 10:28:33 2007] [error] SSL Library Error: 218529960 error:0D0680A8:asn1 encoding routines:ASN1_CHECK_TLEN:wrong tag
[Sun Sep 16 10:28:33 2007] [error] SSL Library Error: 218595386 error:0D07803A:asn1 encoding routines:ASN1_ITEM_EX_D2I:nested asn1 error
[Sun Sep 16 11:51:06 2007] [error] Init: Unable to read server certificate from file /var/www/web24/ssl/www.shop-schwarzes-gesoxx.de.crt
[Sun Sep 16 11:51:06 2007] [error] SSL Library Error: 218529960 error:0D0680A8:asn1 encoding routines:ASN1_CHECK_TLEN:wrong tag
[Sun Sep 16 11:51:06 2007] [error] SSL Library Error: 218595386 error:0D07803A:asn1 encoding routines:ASN1_ITEM_EX_D2I:nested asn1 error
[Sun Sep 16 11:51:11 2007] [error] Init: Unable to read server certificate from file /var/www/web24/ssl/www.shop-schwarzes-gesoxx.de.crt
[Sun Sep 16 11:51:11 2007] [error] SSL Library Error: 218529960 error:0D0680A8:asn1 encoding routines:ASN1_CHECK_TLEN:wrong tag
[Sun Sep 16 11:51:11 2007] [error] SSL Library Error: 218595386 error:0D07803A:asn1 encoding routines:ASN1_ITEM_EX_D2I:nested asn1 error
[Sun Sep 16 11:55:24 2007] [error] Init: Unable to read server certificate from file /var/www/web24/ssl/www.shop-schwarzes-gesoxx.de.crt
[Sun Sep 16 11:55:24 2007] [error] SSL Library Error: 218529960 error:0D0680A8:asn1 encoding routines:ASN1_CHECK_TLEN:wrong tag
[Sun Sep 16 11:55:24 2007] [error] SSL Library Error: 218595386 error:0D07803A:asn1 encoding routines:ASN1_ITEM_EX_D2I:nested asn1 error
[Sun Sep 16 11:56:28 2007] [error] Init: Unable to read server certificate from file /var/www/web24/ssl/www.shop-schwarzes-gesoxx.de.crt
[Sun Sep 16 11:56:28 2007] [error] SSL Library Error: 218529960 error:0D0680A8:asn1 encoding routines:ASN1_CHECK_TLEN:wrong tag
[Sun Sep 16 11:56:28 2007] [error] SSL Library Error: 218595386 error:0D07803A:asn1 encoding routines:ASN1_ITEM_EX_D2I:nested asn1 error
[Sun Sep 16 13:22:25 2007] [error] Init: Unable to read server certificate from file /var/www/web24/ssl/www.shop-schwarzes-gesoxx.de.crt
[Sun Sep 16 13:22:25 2007] [error] SSL Library Error: 218529960 error:0D0680A8:asn1 encoding routines:ASN1_CHECK_TLEN:wrong tag


What have I to do????

Are you sure that you copied the complete certificate and that you copied it to the correct field, e.g. that you did not mix up csr and crt?