How to manage default SSL cert for hostname

Shirehosting · May 27, 2024, 10:46am

|----------------------|---------------------------|
| OS type and version | Debian Linux 12 |
| Webmin version | 2.111 |
| Usermin version | 2.010 |
| Virtualmin version | 7.10.0 Pro |
| Theme version | 21.10 |
| Package updates | All installed packages are up to date |

Hi Guys @staff

I’m going to assume this issue is some throwback from the below thread

I have just installed a fresh copy of virtualmin, and are now left wondering how I manage the default ssl certificate. I used to just be able to choose the host name from the drop down menu > manage virtual server > set up SSL certificate. I was then greeted with both green and yellow buttons where I could copy or remove the default ssl cert to the other services like postfix dovecot mariadb. etc. see below

Now that feature is no longer to be seen, the default host name is no longer in the drop down box and from what I can see I’m now left chasing each service individually copying in the default ssl certificate that was set up to each service.

This is insane, what happened… I’m I missing something or is this a bug from the above hostname mail issue ?

Thanks
Michael

stefan1959 · May 27, 2024, 11:08am

You seem to have created subdomain menia.shirehosting.com.au
Is that what you wanted as all certs will have menia in them

Shirehosting · May 27, 2024, 11:10am

are you asking is I have created the subdomain or are you telling me to now create the subdomain ?

stefan1959 · May 27, 2024, 11:14am

yep, did you want menia. as the virtual server normally you would use just shirehosting.com.au

Shirehosting · May 27, 2024, 11:18am

yep what … which one, ??

my issue is I have never had to create a subdomain of the host name before. Now its no longer there. Is this the new normal or is it a bug ?

That is what I would like an answer to.

stefan1959 · May 27, 2024, 11:20am

Maybe, seen something . Is this on the latest script install?
I’ll do a test, what did you name the server?

stefan1959 · May 27, 2024, 11:59am

do you mean your missing this

my issue is I have never had to create a subdomain of the host name before

No idea what you mean, maybe its just late.

Ilia · May 27, 2024, 10:23pm

The host default domain is hidden from view by default. You can control this in System Settings ⇾ Virtualmin Configuration: SSL settings by using the Create host default domain with Let’s Encrypt certificate option.

Shirehosting · May 28, 2024, 8:32am

Yes, that is exactly what I mean is missing

Shirehosting · May 28, 2024, 8:37am

Hi @Ilia

Unless I’m missing something that is not exactly the same as we had previously. Yes it creates a ssl cert for the host name but it does not allow me to specify where to use that default hostname ssl. Eg it does not assign it to Usermin nor mariadb I now have to do this manually.

I would like the functionality we had before a button to copy it to the other services.

BTW what does “Yes, and keep visible” mean ?

Thanks
Michael

Shirehosting · May 28, 2024, 8:39am

Also how do I now recreate an hostname ssl after its been done automatically. as I’m not seeing a way once its been done the first time ?

Ilia · May 28, 2024, 10:49am

That button was and still is available on the Manage Virtual Server ⇾ Setup SSL Certificate page.

It means it will be shown in the domain dropdown in the left menu and on other pages in the UI.

You don’t need to do it, but you could turn the default domain feature off and then on again using the Create host default domain with Let’s Encrypt certificate option to have it recreated.

Shirehosting · May 29, 2024, 1:01am

Hi Ilia

Ok This is what I was after, it brings everything back. !!!

I probably should have read the tooltip but you know no one really does until its to late.

Given updates and changes should always make life easier for the user not harder, may I make the suggestion that given this new “normal” if a host default domain ssl" is created may I suggest you also copy it to all other servers as the default this way when stupid people like me cant find the button at least it will work as expected out of the box.

Thanks
Michael

Ilia · May 30, 2024, 12:18am

I don’t think it’s desirable. Do you mean to Set as Default Services Certificate, right?

@Jamie, what are your thoughts on it – making host default domain serve as default services certificate?

Jamie · May 31, 2024, 1:30am

Sure, that’s not a bad idea. If we can create a default domain with a valid SSL cert from Let’s Encrypt, we could also copy that as the default to Postfix / Dovecot / etc…

Shirehosting · May 31, 2024, 10:21am

Yes, thats what we do with all our servers … it makes sense to me

Ilia · June 3, 2024, 8:23pm

Alright, implemented here:

Shirehosting · June 4, 2024, 12:40pm

@Ilia @Jamie

Thanks Guys much appreciated

system · June 12, 2024, 12:40pm

This topic was automatically closed 8 days after the last reply. New replies are no longer allowed.