SSL certifficate conflict - all https domains redirected to primary https domain

[postcd]

Hello,

an WHM server with on IP. Three SSL certifficates are installed. THey are visible in "Home »SSL/TLS »Manage SSL Hosts" and one is probably set as "Primary" and this domain certifficate is used for all https:// acros the server.

It means all domains that do not have https:// and someone use https:// they are redirected tot hat primary certifficate domain, which is unwanted.

Please how to fix this issue disabling this redirect? Thank You

 

[cPanelMichael]

Hello

This is the intended behavior. You will need to make a different installed certificate the primary certificate via the "Make Primary" action under the "Manage SSL Hosts" option in WHM if you want a different certificate to appear for Virtual Hosts without a certificate installed.

Thank you.

 

[postcd]

Thanks, but You probably did not read properly what i need, i dont need different domain to appear, i want https just dont work, dont redirect to other domain..

 

[cPanelMichael]

Thanks, but You probably did not read properly what i need, i dont need different domain to appear, i want https just dont work, dont redirect to other domain..

Right, that is not possible unless you move all of your accounts with SSL to their own private IP addresses.

Thank you.

 

[postcd]

why it is made to behave like this

some non-ssl domain redirecting to another when accesswed by https?

sounds to me like a wrong behavior, can this be programmed proper way without redirecting all non ssl domains to main ssl domain?

 

[cPanelMichael]

It's because you have installed a SSL certificate on a shared IP address. Thus, a VirtualHost for port 443 exists for that IP address. This is how Apache works, as opposed to a special functionality that cPanel instituted.

Thank you.

 

[postcd]

Thank for explanation, so there is no way to make apache not redirect all domains to primary SSL domain? Or any way to not make any Primary SSL, i mean i think it redirects to domain which has primary SSL, so to not maky any domain SSL primary? :D

 

[cPanelMichael]

You could install a self-signed certificate on each domain name on that IP address, move accounts with SSL certificates to their own IP address, or make a different SSL host the primary certificate for the IP address.

Thank you.

 

[postcd]

Thanks for advice, i see, for one domain new self signed certifficate can be generated from "WHM / SSL/TLS" section
(Google: WHM how to generate self signed certiffficate)
that fixed the redirection problem for that one domain

but there is too much domans (200+) to do this manually, some bulk self signed certifficate generator for all non ssl domains probably dont exist..

> make a different SSL host the primary certificate
can be good to be some domain or URL that tells visitor that there is no site at https:// or the domain/site which redirects (using .htaccess) visitor back from where he came, only to HTTP://

Shared SSL Certificate

Currently, there are no shared SSL certificates.

 

[Sikes]

Just make a domain/subdomain with self-signed sertificate, make it primary and redirect to $_SERVER['HTTP_HOST'] in index.php. Or better with .htaccess:

RewriteRule ^ http://%{HTTP_HOST}%{REQUEST_URI} [L,R=301]

 

[tienngang]

In hosting of Primary domain, add following below:

RewriteCond %{HTTPS} =on
RewriteCond %{HTTP_HOST} !^primarydomain.com
RewriteRule ^(.*)$ http://%{HTTP_HOST}%{REQUEST_URI} [NC,R=301,L]

Done! Good luck.