The server hostname was changed. Ever since that, secure access such as http://servername.new:2087 redirects to https://servername.old:2087

Fix :

This happens when the SSL certificate has not been reset for the services.
Go to WHM >> Manage Service SSL Certificates.
Re-issue all the service certificates.

This should resolve the issue!

Need to redirect https://domain.com to https://www.domain.com for SSL purposes.

Solution :

Use the following code in the htaccess file under the public_html folder for the concerned domain :

RewriteEngine On
RewriteCond %{HTTP_HOST} ^domain.com [NC]
RewriteRule ^(.*)$ https://www.domain.com/$1 [L,R=301]

1. Download the Primary, Intermediate and Root certificate files.
2. Log in to the Plesk Control Panel.
3. Select ‘Domains’ from the left menu.
4. Click on the domain name for which the certificate has been created for.
5. Click on the ‘Certificates’ menu item.
6. There is a button in the middle of the page labeled ‘Browse’. Click ‘Browse’ >> navigate to the location of the saved Primary Certificate (your_domain_name.crt) >> Select it >> Click ‘Send File’. This will upload and install the certificate against the corresponding Private Key.
7. The certificate will now appear in the list of certificates at the bottom of the page.
8. Click on the particular certificate in the list.
9. Look for the box labeled ‘CA Certificate’. You need to paste both the Intermediate Certificate and Trusted Root Certificate in this box.
10. Click the ‘Send Text’ button.
11. Now click ‘Up Level’ until you get to the top level and choose ‘Setup’.
12. At the top of the page, change the ‘SSL Certificate’ drop-down menu to the certificate you have just installed.
13. Click the ‘Server’ item from the left menu.
14. Click on the ‘Service Management’ menu item.
15. Restart the Web Server to activate the certificate.

A wild-card SSL (*.server.tld) works for the server hostname (https://hostname.server.tld) but does NOT work for cPanel/WHM (https://hostname.server.tld:2083)

Fix :

- Go to WHM >> Service Configuration >> Manage Service SSL Certificates
- Install the certificate for each of the services.

This should resolve the issue.

When someone tries to access the site through the insecure URL (http) , it should redirect ( to https ) automatically.

Fix :

This can be easily achieved by putting the following code in the .htaccess file under ‘public_html’ folder :

RewriteEngine On
RewriteCond %{SERVER_PORT} !^443$
RewriteRule ^(.*)$ https://www.yourdomainname.tld/$1 [L,R]

(Assuming that you have SSL installed on the domain )

Why is that when I try to access a secure web page on your server my browser shows an error message saying something about an “unknown authority”, and won’t load the page.

Fix :

When SSL is installed and if you are still getting warning messages like “Unknown authority”, then the problem could be because of some directives missing in httpd.conf.

1)Check the configuration file – httpd.conf for the missing directives
vi /usr/local/apache/conf/httpd.conf

Check for the following three directives in the Virtual Host entry for the
domain(avibird.com) in httpd.conf for port 443.

SSLCertificateFile /usr/share/ssl/certs/avibird.com.crt (This is for
certificate)
SSLCertificateKeyFile /usr/share/ssl/private/avibird.com.key ( This is for
key)
SSLCACertificateFile /usr/share/ssl/certs/ca_new.txt (This is the ca bundle
file)

If “SSLCACertificateFile” directive is not present then the given warning will
be shown. Add the missing entries in httpd.conf and save the configuration
file.

2) Test the configuration file – httpd.conf

/usr/local/apache/bin/apachectl configtest

Restart the Apache server
/etc/rc.d/init.d/httpd stop/startssl

IMPORTANT
=========
The above solution will work only provided the following 3 files are present
/usr/share/ssl/certs/avibird.com.crt ( for certificate)
/usr/share/ssl/private/avibird.com.key ( for key)
/usr/share/ssl/certs/ca_new.txt ( bundle file)

If the above files are not present, you need to install the SSL cert again
WHM

New SSL certificate has been installed for a domain through plesk control panel but while checking the certificate via a browser, the old one that is about to expire is still in place instead of new one.

Cause :

The new SSL certificate is not assigned to the domain from the IP Pool section of plesk control panel.

Fix :

Login to your Plesk control panel. Assign the new SSL certificate to your domain.
1) Viewing the new SSL certificate
Click on Home at left panel of your control panel >> Click on your domain name >> Click on Certificates icon under Services section. All the installed SSL certificates will be listed here.
2) Assigning the new SSL certificate to your domain
Click on Home on the left side of your control panel >>Click on IP Pool icon under Tools section >> Click on the respective IP address assigned to the domain >> Assign the new SSL Certificate from the list of available SSL certificates for this domain and click  OK.
You might need to restart Apache. New SSL certificate can be viewed through browser.