How to install pfx certificate on customer domain.

    Hello,


    I'm trying to install a pfx certificate for one domain using the i-mscp interface. I understand that the pfx file must be converted to be compatible with apache.
    I have found this tutorial that explain how to install but it's unclear to me.
    Any idea how to fill the fields on "show certificate" option so that it would work?


    Thank you.

    Hello ;


    https://www.sslshopper.com/ssl-converter.html

    badge.php?id=1239063037&bid=2518&key=1747635596&format=png&z=547451206

    SSH key for online support

    BTW: Teamviewer if you need help ;)

    badge.php?id=1239063037&bid=2518&key=1747635596&format=png&z=547451206

    SSH key for online support

    Thank you for the Teamviewer idea but it would be nice to write it on this forum for the rest of the community that could be stuck with this issue.
    The website is quite nice. I have generated the certificate.cer file using

    Code
    1. openssl pkcs12 -in certificate.pfx -out certificate.cer -nodes


    Inside I have the Private key hash (between the start and end tags). That I copy and paste it in the Private Key field. Now for the Certificate entry, there are 3 of them, below the Private key. Should I copy all of them?

    Re;


    First, for the private key (as for the certificate and ca bundle (intermediate certificates), you must copy it by including the tags.
    About your question, I presume that the first entry is the certificate and the other (the bottom most) are intermediate certificates (CA bundle).

    badge.php?id=1239063037&bid=2518&key=1747635596&format=png&z=547451206

    SSH key for online support

    Including,
    -----BEGIN PRIVATE KEY-----
    -----END PRIVATE KEY-----


    ?
    Also the certificate part should include those?

    YES YES YES (I've updated my previous answer) ;)

    badge.php?id=1239063037&bid=2518&key=1747635596&format=png&z=547451206

    SSH key for online support

    I've got, "your certificate is not valid".
    Only Private Key and Certificate filed must contain information, the rest of them should be empty?

    Re;


    No.

    • The private key should go to the private key input field
    • The certificate must go in the certificate input field
    • If you have another certificates (certificates below your own certificate which is normally located below the private key), you must put them in the intermediate certificates (CA bundle) input field


    Note: If you are using latest stable branch, don't forget that now, you need also the CA root which should be added at bottom of any other intermediate certificate.


    Still available for teamviewer if you want ;)

    badge.php?id=1239063037&bid=2518&key=1747635596&format=png&z=547451206

    SSH key for online support

    I'm runing i-MSCP Git stable Build: 20140327 on Ubuntu 14.04 LTS. The Stable 1.1.5 got some problems with the php-fpm on this version of Ubuntu. Latest Git version works without problems.
    So I need the CA Bundle....