Hi, i trying to upload SSL Private Key and Certificate via control panel but it wasnt uploaded. Try multiple times and what it does after clicking on Upload button is just refresh the page.
Can you please tell me:
- On which domain name do you experience this issue?
- From where did you get the SSL certificate (I don’t see any of our free SSL certificates in your account)?
2 Likes
Hi im having the same problem when I try to upload the key after clicking on upload button it refresh the page and it doesn’t gve any error and the key box still empty
So could you answer the questions I asked then instead? I would really like to look into this issue and help solve it, but I can’t do that if I don’t have the required information.
1 Like
i solved it already thank you. I used a new domain, now my issue is that i think the ssl is not working with telegram
Hello all,
I get the next message when update the certificate in ssl/tls of cpanel:
“I can not find a key for this domain, please ensure you have uploaded a key before the certificate !”
But i uploaded the key before, what can i do?
The certificate I requested to infinityfree using the new featurein the client area in SSLCertificates
I have checked your account, and I don’t see any SSL certificate or private key there. Can you please try to upload the private key to your account again, verify you still get this issue and then leave the account alone so we can try to see what happens?
1 Like
Hello,
I tried again, and i get the error again.
my steps after the certificate was issued to melapela.ml (configuring CNAME records and validatind DNS successfully) were:
1 copy the priv key in client area SSL Certificate section
2 paste the priv key in ssl/tls (cpanel) section
3 click on “upload key” → no message appears (not ok and not error) so i suppose is uploaded ok
4 copy cert
5 paste cert in this section
6 click on upload certificate
7 I get the error
what do you mean with, leave the account alone? Log out?
thanks for your quick response
Hello again, I could solve it few minutes ago.
After my private Key and Certificate was issued. i had problems setting up, I pasted the private key and click “upload button”, but my key was removed from its field, i mean, after click button “upload key”, the key should be shown in its field persistently, was not my case.
I supposed , when I clicked upload button the “CSR” field was empty, so my privateKey did not get uploaded
So, my solution was:
1 Generate a random key clicking the button “Generate Key/CSR” in SSL/TLS of cpanel section, filling the form to generate it. I get now a random PrivateKey/CSR pair
2 Overwriting the Private Key generated in previous step with my Private Key generated in SSL certificate of the client area by InfinityFree when I requested my certificate and keeping the CSR worked (HERE, after click button “upload key”, the new priv key was persistent in its field), i didn’t modify the CSR field (generated in previous step too)
3 Pasted my certificate in certificate field, and click “upload certificate”
4 Now my private Key, CSR and Certificate fields are persistent in its field (no empty fields)
5 so if you refresh the page, that fields must not be empty, it must show the private key, CSR and Certificate, and it means it was OK.
6 After, I checked my web with “https://mydomain” and works perfectly
7 Check if it force my page use “HTTPS://” even writing “HTTP://” as “http://mysitedomain” (see Knowledge Base of infinity free for more info how-to-force-all-traffic-to-https)
With Joomla cms is possible to force it in “configuration global” → “Server” tab → SET “force https” field
I hope to have been clear
Thanks
2 Likes
@Admin this could be posted in knoledge base
A CSR must be created before uploading a key or something similar
Im working on resume.eu.org and I’m getting the ssl from https://www.sslforfree.com
I didn’t generate csr from my hosting control panel. I’m just using private key, ca bundle and cert from the link given.
A CSR is used to get an SSL certificate matching a private key, without having to send the private key to the certificate provider. It’s not used by the server or browser to setup a secure connection. Once you have the certificate, the CSR can be discarded.
Under the hood, the client area generates the private key and CSR, and sends the CSR to Let’s Encrypt to be signed. The signed certificate is then retrieves and shown to you. After this point, the CSR is not used for anything anymore.
This is also why the client area doesn’t give you the CSR and the control panel doesn’t give you the option to upload a CSR: the CSR is useless since you already have the certificate. And this goes doubly so for your domain, because the CSR shown does not match the private key anymore, because you uploaded a different one.
If everything worked as intended, you should be able to simply upload the private key and certificate, without touching the private key and CSR generator from the control panel.
But it’s good to know that generating a private key and CSR from the control panel is a workaround for the private key upload issue (which many people appear to be experiencing). However, that still means the upload issue should be fixed, and not that we want people to always have to generate two private keys.
2 Likes
@Admin yes i agree,
So the Issue could be: that it is NOT possible to Upload a Key if the CSR field is not filled,
(if you do that, no message appears(error, success,…))
So the solution is create the KEY/CSR pair and overwrite it with the NEW private key requested in client area, Although now the CSR and NEW private key does not match it works beacause the useful is the KEY and CERT
So, Can I say, the CSR sent to Lets Encrypt contains my Public Key with more data as company name, email, country, … bla bla?
and i suppose Lets Encrypt sign this CSR with ITS PRIVATE KEY and send the CERTIFICATE generated including ITS PUBLIC KEY
so i can CHECK with their PubKey the CERT if is correct or not
is it the process or something similar?
Strangely enough, it works on some domains. But not on others. Why does it work on some domains and not on others? I don’t know, but I would very much like to find out.
That’s exactly how SSL works, yes!
2 Likes
This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.