login-Page on https / ssl-certificate

[medzoom]

does anyone has already made the login-page on https?

Some clients do have problems to overrule one firefox the "insecure warning" while making the login?

On privious posts I already read that I do have to aquire a ssl-certificate on my private-ip . But how do I setup the ssl

best regards

[alan]

Please check out chapter 5 of firstspot_guide.pdf. Note that you need to use domain name Login Page URL if you want enable SSL in the login page.
_________________
~ Patronsoft Limited ~

[medzoom]

Dear Alan,

sorry I didnt look into the manual myself.

Yes it is perfectly discribed there.

thank you - I will try it

[medzoom]

I do have a question to the certificate...

when I buy an ssl-certificate, do I need a Wildcard-SSL certificate?

as far as I see, the following sites are visual to the Customer-site
> logout.firstpot.org (or logout.my.domain)
> login.firstspot.org

As I read on goDaddy.com, I would need an <Wildcard-SSL> for <firstspot.org> (or the corresponding for me like *.my.domain), so that certificate will include the Subdomains logout.firstpot.org and login.firstspot.org?

best regards

[alan]

No. Currently, you can only SSL-enabled the login page.
_________________
~ Patronsoft Limited ~

[medzoom]

I tried to configure the "show IP address or domain name firstpot.org.." and used an own domain myself (which I own but doent have activated on an DNS-Server) and now after starting it says, that the DNS-Server can not find that Domain / URL. "what acctually is correct!"

As I use the Firstspot on an internal network, I will never register an Domain to the internal network address?

What is the solution therefore? I use 10.20.7.2 for the "visitor-network" so, this IP I will never activate on an official DNS-Server?

Do I therefore need my own DNSServer on my Firstspot-Server to set my domain to my private ip-address?

[alan]

Did you add your domain in Exception Free Websites manually? This is not required.
_________________
~ Patronsoft Limited ~

[medzoom]

no I havent added any domain-name in the "free domain names"

but I have both DNS-Ips (of my internet-provider) in the "free IP addresses" added (I did this many year??)

[medzoom]

this is the error-message

[alan]

You cannot use your DNS in this case since FirstSpot needs to resolve your domain correctly in the visitor side.

Please remove your Exception Free Websites DNS IP, and set the FirstSpot DHCP -> Preferred DNS server IP and Alternate DNS server IP to 0.0.0.0, and then restart FirstSpot.
_________________
~ Patronsoft Limited ~

[medzoom]

mercy.. it worked perfect!

I will now try to get an official SSL-certificate for my new "internal" domain

[medzoom]

Dear Alan,

to the "special"-domain, what happens when the domain is indeed registered to an official DNS-Server over the internet and therefore is theoretically linked to an real website?

would the firstspot-server overrule the request for that domain for the clients on the visitor-net to the "real" website and forward it to the local address of the firstspot itselft?

I do have problems register the SSL for my domain, as this domain doesnt have an official DNS-entry and can not register that domain on godaddy.com

[alan]

There will be no problems. Our DNS server will override the official entry (e.g. the default login domain name URL firstspot.org is registered by us)
_________________
~ Patronsoft Limited ~

[medzoom]

dear Alan,

I did all the my-server.* stuff according to the manual, but my clients doesnt get an correct certificate.

I do have have finally registered an certificate on my own domain, did all the authorisation with the certificate-station, but finally I get only an SHA-2 certs by godaddy? May this be the problem?

Which logfile shell I use to get more details?

[alan]

Please post the client error screenshot here
_________________
~ Patronsoft Limited ~