bzfvggigaietjghnkzdfaewrkv Posted May 8, 2017 Share Posted May 8, 2017 (edited) Our host has recently provided a self-signed SSL certificate on our domain. I've changed to https:// in Dashboard>SSL Settings but it's giving a 'not secure' warning so I'm obviously doing something wrong. Is there a guide to correctly setting this up? Edited May 8, 2017 by bzfvggigaietjghnkzdfaewrkv Quote Link to comment Share on other sites More sharing options...
Dirty Butter Posted May 8, 2017 Share Posted May 8, 2017 May we have the url for your store? It's a little confusing, but the second box on the ssl tab should have the http:// version of your store url. If you have that part right, then it may be something on your page is not secure. It might be an image or some link that is to http://. Quote Link to comment Share on other sites More sharing options...
bzfvggigaietjghnkzdfaewrkv Posted May 8, 2017 Author Share Posted May 8, 2017 Store is www.troutflies.com.au I've disabled SSL as it makes the site unusable, but here are screen caps of settings and the subsequent warning in Firefox Quote Link to comment Share on other sites More sharing options...
bsmither Posted May 8, 2017 Share Posted May 8, 2017 In my opinion, the reason why a hosting provider gives you a SSL cert that is self-signed (and possibly using the hosts' domain name) is to provide you a means of testing any secure comms that need testing. In this fashion, you will need to instruct your browser to accept this otherwise mis-configured certificate. Click the Advanced button, then click the Add Exception button. On the pop-up, you should uncheck "Permanently store this exception", but click "Confirm security exception". Make your tests. When ready to go live, have your hosting provider assist you in installing your own legitimate certificate. Quote Link to comment Share on other sites More sharing options...
bzfvggigaietjghnkzdfaewrkv Posted May 8, 2017 Author Share Posted May 8, 2017 That sounds about right. I'll look into it with the host, thanks. Quote Link to comment Share on other sites More sharing options...
bzfvggigaietjghnkzdfaewrkv Posted May 9, 2017 Author Share Posted May 9, 2017 We now have a proper SSL certificate correctly installed. However I switched SSL to 'Yes' and now have security warnings and am also unable to switch SSL off. It just boots me out of admin every time. Website is effectively down. Can I change this in phpmyadmin or is ther a config file I can edit? Quote Link to comment Share on other sites More sharing options...
bsmither Posted May 9, 2017 Share Posted May 9, 2017 When I visit your site, I get the same warning about the cert being self-signed. So, I forced my browser to re-fetch the page's resources, and that allowed me to get a fresh copy of your site's certificate. I see that it is a "Let's Encrypt" cert and it is a correct cert. However, some parts of the page are being requested are not using https. Instead, it seems the web server is often not sending the correct cert. The file /js/plugins.php took several tries to fetch it, until finally the web server sent the correct cert along with it. I have no experience debugging web server security cert issues, but hopefully my description of my experience with your site may prove useful in discussing the situation with your hosting provider. Quote Link to comment Share on other sites More sharing options...
bzfvggigaietjghnkzdfaewrkv Posted May 9, 2017 Author Share Posted May 9, 2017 Ok thanks. Is there a way I can change 'Enable SSL' to 'no' via cpanel? Unable to make any changes in dashboard at the moment Quote Link to comment Share on other sites More sharing options...
bsmither Posted May 9, 2017 Share Posted May 9, 2017 Is it true that forcing your browser accept an invalid cert still won't let you get in to the admin? Quote Link to comment Share on other sites More sharing options...
bzfvggigaietjghnkzdfaewrkv Posted May 9, 2017 Author Share Posted May 9, 2017 I can sporadically get into admin, but every time I click 'save' it boots me out I'm currently sending a support ticket. Quote Link to comment Share on other sites More sharing options...
bsmither Posted May 9, 2017 Share Posted May 9, 2017 In the database table CubeCart_config, find the record 'config'. The value is base64 encoded. The utility phpMyAdmin will be able to decode it and show the results. Find the 'enableSSL' and change 'Yes' to 'No'. Then have phpMyAdmin base64 encode it back and save it. Your settings should now allow your site to operate in plain http. Quote Link to comment Share on other sites More sharing options...
bzfvggigaietjghnkzdfaewrkv Posted May 10, 2017 Author Share Posted May 10, 2017 Thanks, handy to know. For the record, our host requested Cpanel support and the server is now correctly configured to run https. Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.