service certificates for migrating accounts

dev.null

dev.null

Well-Known Member
May 27, 2003
89
2
158
ASK: can we have the service account cert have multiple fqdns? It'd save a headache every time we transition accounts to new servers.

I'm currently moving my sites to a new server and am hoping I can go through a certificate change with my customers once now and never have to do it again.

My current server hostname is vhost10.<server domain>.<tld> (original, right?).

Right now my cutomers have their email clients (like gmail) pointed to vhost10....:587/993/etc to read/send email.

When I move their sites, they'll need to switch to the new server, in this case it's vhost12.

What would be nice is if I could instead transition each client to something like <account name>.<server domain>.<tld>. That way in the future, when I move their site to a new server, I would just change <account name>.<server domain>.<tld> to point to the new server. They'd never see the change or be asked to update their settings.

The only thing is, all the service certs are tied to the hostname.

So I don't know how to have the service cert include multiple FQDNs that all point to the server's IP.

Is that possible?
 
F

ffeingol

Well-Known Member
PartnerNOC
Nov 9, 2001
963
437
363
cPanel Access Level
DataCenter Provider
It's not going to help you at all now, but with cPanel offering free Let's Encrypt certificates as well as they own, it's much easier to have your clients use mail.theirdomain.tld vs using your host name. Their domain will never change and it will have a valid cert.
 
dev.null

dev.null

Well-Known Member
May 27, 2003
89
2
158
ffeingol said:
It's not going to help you at all now, but with cPanel offering free Let's Encrypt certificates as well as they own, it's much easier to have your clients use mail.theirdomain.tld vs using your host name. Their domain will never change and it will have a valid cert.
Click to expand...
Is that true? When they connect to port 587 to send or 993/995 to receive, do those services answer with _every_ mail.* cert on the server?
 
Last edited:
dev.null

dev.null

Well-Known Member
May 27, 2003
89
2
158
Awesome. As we transition this time I'll tell them to use mail. for all their email service endpoints.

Thanks!
 
You must log in or register to reply here.
Thread starter Similar threads Forum Replies Date
S CPanel Server Services Down After Migration and Reboot Server Management 1
D Possible memory leak in cpanel backup service Server Management 4
S 1 service generated warnings while checking SSL certificates ? Server Management 5
G 1 service generated warnings while checking SSL certificates Server Management 7
R Failed update of services SSL certificates. Server Management 29
Similar threads
CPanel Server Services Down After Migration and Reboot
Possible memory leak in cpanel backup service
1 service generated warnings while checking SSL certificates ?
1 service generated warnings while checking SSL certificates
Failed update of services SSL certificates.
Top Bottom