DirectAdmin - Certificate installation

Immediately after being issued, your SSL certificate will be sent to you by email. It is also possible to download the certificate from the Control Panel. The file containing the certificate will have the same name as the domain name it is meant for (for example: www_sslcertificaten_nl.crt).

Be aware that registering a domain under an admin-account could lead to problems in DirectAdmin. If possible, use the reseller- or user account. It's required to have an owned IP-address that is bound to the user installing the certificate, or that SNI (Server Name Indication) is activated.

Certificate installation

  1. Log in to the DirectAdmin control panel.
  2. Go to Advanced FeaturesSSL Certificates.
  3. Select the last radio button on the bottom of the left colomn, next to Paste a pre-generated certificate and key. This settings uses your own certificate, in stead off the default, self-signed certificate. The Private Key should be already visible in the 'Paste a pre-generated certificate and key' field.
  4. Directly beneath the private key, you should paste the received certificate, overwriting eventual other certificates but keeping the private key, including the begin- and endtags. Press Save to store the certificate.

    DirectAdmin-Installatie SSL Certificaat.png
  5. You should see Certificate and Key Saved appear. Now we need to install the intermediate certificates.

Intermediate Certificate installation

The received certificate needs additional intermediate certificates in order to be recognized as trusted by the browser. Those root and intermediate certificates are delivered with the ordered certificate, and can also be downloaded from the control panel. To install those in DirectAdmin, do the following:

  1. Login to the DirectAdmin control panel.
  2. Go to Advanced FeaturesSSL Certificates.
  3. Click on Click Here on the bottom of the page, next to Click here to paste a CA Root Certificate.
  4. Select the checkbox Use a CA Cert in the top of the screen.
  5. Remove all existing content from the field.
  6. Paste the contents of the second intermediate certificate (when available) and directly below that, the first intermediate certificate. Make sure no empty lines are entered. The result should look like:

    -----BEGIN CERTIFICATE----- 
    <coded contents of the second intermediate certificate, when available>
    -----END CERTIFICATE-----
    -----BEGIN CERTIFICATE-----
    <coded contents of the first intermediate certificate>
    -----END CERTIFICATE-----
  7. Click Save to store the intermediate certificates, and reload the webserver.

Activating SSL

SSL is normally not activated in DirectAdmin.  After installation of the certificates you should check this setting, and switch this on if not so already. The following step describes the activation of this setting.

  1. Login to the DirectAdmin control panel.
  2. Go to Advanced FeaturesSSL Certificates.
  3. On top of the page, right beneath the menu buttons you should see if SSL is enabled, and activate it here when not. When you see SSL Disabled, click on the link You can enable it here to enable.

    Enable ssl1.png

  4. Activate the checkbox next to Secure SSL and press save Save.

    Enable ssl2.png

  5. Return to Advanced FeaturesSSL Certificates to see if SSL is indeed enabled.

    Enable ssl3.png

DirectAdmin uses a different root folder for serving content via HTTP and HTTPS by default. You can set DirectAdmin to use just one folder for both HTTP and HTTPS via Domain Setup, and select the required domain here.

Directadmin-private-html.png

For serving both HTTP and HTTPS traffic from the public_html folder, you need to select the symlink option on the bottom. Be aware that the actual private_html folder gets removed, and then is linked to the public_html folder via a symlink.

Directadmin-private-html-2.png

All necessary steps to install your web server certificate have now been completed. Please make sure to adequately secure your certificate files, and to store a backup of your private key and web server certificate in a safe location. You should also install the root and intermediate certificates. Check whether the certificate is correctly installed with the SSLCheck and ensure an optimal configuration with these tips and settings.

Please do not hesitate to contact us if you encounter problems or error messages.

SSLCheck

Our SSLCheck will examine your website's root and intermediate certificates for correctness and report any potential issues

point up