Hello,
My company just signed a godaddy wildcard certificate.
The objective is to install this certificate for all servers (most of them running apache)
At the first moment, the support staff of godaddy told me:
Quote:
"If you wish to install the same certificate on multiple servers, you will need to export the private key as a pfx file and import, along with the other issued certificate files, onto the second server. Unfortunately, we do not provide support or instructions on this particular setup because it is an advanced server configuration technique"
|
Well, i did exported my certificate (on the same host that i generated the csr)
Code:
# openssl pkcs12 -in mydomain.com.crt -inkey mydomainwc.key -export -out mydomainwc.pfx
Copied the pfx file to another server, and tried to import it.
Code:
# openssl pkcs12 -in mydomainwc.pfx -out output.txt -nodes
Then from the output.txt i got the contents of mydomainwc.key and mydomain.com.crt.
After configuring those 2 files on my ssl.conf I restarted apache and tried to access my new secure website, and i got the following error:
Quote:
(1) The server's name "www.mydomain.com" does not match the certificate's name "webmail.mydomain.com". Somebody may be trying to eavesdrop on you.
(2) The certificate for "webmail.mydomain.com" is signed by the unknown Certificate Authority "webmail.mydomain.com". It is not possible to verify that this is a valid certificate.
|
Do i need to configure all my apache servers to use the same name? this seens to me a very bad idea
Where's my mistake? Any ideas or suggestions?
thanks in advance!