I compare the CSR with web interface and directory ‘/home/user-data/ssl/ssl_cert_sign_req.csr’ and they don’t match…nor does any of my other domains. Why is this? My suspicion is that you generating a new which will replace the old one.
Secondary question concerning certs, on my second domain I have a wildcard but since the common name for CSR is not with a star (*) I’m having issues with my SSL certifier, Comodo. They give me error as follows:
Invalid Wildcard CSR The CSR provided is invalid to generate a wildcard certificate. Please make sure that you generate a CSR with a Common Name (CN) that starts with ‘*.’ (ex: *.yourdomain.com).
I compare the CSR with web interface and directory ‘/home/user-data/ssl/ssl_cert_sign_req.csr’ and they don’t match…nor does any of my other domains.
Have you picked the right file in the right folder? I.e. cat /home/user-data/ssl/domain.tld/certificate_signing_request.csr for the domain domain.tld. The file you mentioned is for the subdomain box.domain.tld or the one you’ve created on setup.
The admin interface generates its own CSR, so it won’t match the files on disk. In fact, future versions will probably delete the CSRs on disk because they serve no purpose (once the self-signed certificate is generated).
The box cannot generate wildcard CSRs. For that you are on your own or maybe someone else here (@h8h?) can help you with that part.
I think you have to create the certificate manually (with openssl) with an asterisk as subdomain. Later on you have to overwrite the certificates for each domain.
or maybe someone else here (