Hello,

I am interested in including an SSL certificate on our server for ourselves and our clients, but am admittedly a newbie on this topic.

I currently have two IPs for our server, one for shared IP for our sites (and clients sites) and one for NS backup.

I know that I can buy a certificate for ourselves (ie domain.com) that will secure our Web site, but will we be able to share this certificate with our clients who wish to share it? I know this is possible. (I assume that a browser pop-up will show for users connecting to our client sites if we share our cert with them, as it is not necessarily registered to their domain. Please correct me if I am wrong about this.)

Also, would additional IP's be needed for using the SSL cert? My understanding is that it's one IP per SSL cert, but does this apply to sharing a cert as well?

Personally, I don't like the idea of sharing a cert, but clients are requesting it as a more cost-effective route for security, so I'd rather try to do it, if possible.

Any information would be helpful. Thank you for your time.

(Note: I posted here in case there was information directly related to us using DirectAdmin as our panel package.)

For shared SSL you probably have a couple ways to do it. (Not sure about directadmin, so this might not work for you.) You could get a SSL for your site and tell your customers to use https://yourdomain.com/~theiraccount. This way isn't the best because, at least with cpanel, it'll zap bandwidth away from your domain and not theirs.

Another, none bandwidth zapping method, is to use the https://servername.domain.com/~account method. Either way, you can do it easy.

My understanding on this, is you would have to get a WildCard SSL certificate, which can be alot more expensive, we have a domain which has a 'Root-Domain' 128-bit Certificate.

But, if you wanted to have each account share 1 certificate on multiple domains you'd need a 'server wildcard certificate' I'd try a company such as servertastic who are resellers, where you'd get one for about $300... whereas they're usually around $1000+

It is agreed that you could do the other method by securing your 'server domain' but this causes many problems, and many of the security functions you have in place
(i.e. limiting bandwidth, securing domain facilities) could be bypassed if you where to have just 1 'Root-Domain' certificate... plus if your running a reseller company for example, they won't want this really.

No need for Wildcard SSL Cert.

1. In your DA admin account, go to user level.
2. Create the server domain
3. Enable SSL and settings you want.
4. Make Secure.serverdomain.com subdomain
5. Add SSL certif

6. Follow instructions from http://directadmin.com/forum/showthread.php?threadid=11491