Need a quick fix with SSL

Discussion in 'ISPConfig 3 Priority Support' started by jpcyrenne, Jun 4, 2019.

  1. jpcyrenne

    jpcyrenne Member HowtoForge Supporter

    Good day,

    I have a VM running CentOS6 and ISPConfig - I know it's getting pretty old. If I change anything I'll break the customer's site...

    I really need to change the default SSL. I found this :
    The first part hasn't worked for me? I can't use the second part (update.php) because I don't have the installer anymore and can't risk upgrading the CP at this point (only need to update SSL).

    What I then did:
    I took a valid key and SSL (self-signed) and replaced them in /usr/local/ispconfig/interface/ssl and then restarted httpd.
    [[email protected] ssl]# ll
    -rw-r--r-- 1 root root 1366 Jun 3 20:42 ispserver.crt
    -rw-r--r-- 1 root root 1346 May 24 12:45 ispserver.crt.old
    -rwxr-x--- 1 root root 1147 May 24 12:44 ispserver.csr
    -r-------- 1 root root 1704 Jun 3 20:42 ispserver.key
    -r-------- 1 root root 1679 May 24 12:43 ispserver.key.old

    If I call htttps://IP:8080 it's OK (I get the CP with new cert).
    But if I call https://IP (no port or app) it still has the old self signed cert (and i have an old customer that want's his name off the server - the old certificate shows his company name). I get the Apage test page with old cert. (even after reboot)

    Where else can I change the cert for it to show the new one on https://IP ?

    Thanks ahead,

  2. till

    till Super Moderator Staff Member ISPConfig Developer

    This might be the default ssl cert from centos. Not sure where centos stores it, you probably have a global ssl config file in apache where you can see the path of that cert.
  3. jpcyrenne

    jpcyrenne Member HowtoForge Supporter

    You were correct. All good now!

    Location (if ever it can help someone else):
    /etc/pki/tls/private/ (key)
    /etc/pki/tls/certs/ (crt)

    Thank you once again!

    till likes this.

Share This Page