Good day, I have a VM running CentOS6 and ISPConfig 3.0.5.4p9 - I know it's getting pretty old. If I change anything I'll break the customer's site... I really need to change the default SSL. I found this : https://www.faqforge.com/linux/how-to-renew-the-ispconfig-3-ssl-certificate/ The first part hasn't worked for me? I can't use the second part (update.php) because I don't have the installer anymore and can't risk upgrading the CP at this point (only need to update SSL). What I then did: I took a valid key and SSL (self-signed) and replaced them in /usr/local/ispconfig/interface/ssl and then restarted httpd. [root@hote ssl]# ll -rw-r--r-- 1 root root 1366 Jun 3 20:42 ispserver.crt -rw-r--r-- 1 root root 1346 May 24 12:45 ispserver.crt.old -rwxr-x--- 1 root root 1147 May 24 12:44 ispserver.csr -r-------- 1 root root 1704 Jun 3 20:42 ispserver.key -r-------- 1 root root 1679 May 24 12:43 ispserver.key.old If I call htttps://IP:8080 it's OK (I get the CP with new cert). But if I call https://IP (no port or app) it still has the old self signed cert (and i have an old customer that want's his name off the server - the old certificate shows his company name). I get the Apage test page with old cert. (even after reboot) Where else can I change the cert for it to show the new one on https://IP ? Thanks ahead, JP
This might be the default ssl cert from centos. Not sure where centos stores it, you probably have a global ssl config file in apache where you can see the path of that cert.
You were correct. All good now! Location (if ever it can help someone else): /etc/pki/tls/private/ (key) /etc/pki/tls/certs/ (crt) Thank you once again! JP