Positive SSL different?

I’ve installed a bunch of certificates on my Apache (ModSSL) servers and I’ve only had one problem when the certificate was damaged by emailing it.

However, no matter what I do I can’t get a PositiveSSL to install on my system. I have two clients with PositiveSSLs, neither of them will install. When I install the certificates via cPanel, I get a error that the key doesn’t match. When I install in directly into httpd.conf, httpd will not restart. I’ve used the instructions online about adding it to the virtual server. Nothing works.

Am I the only one that can’t install PositiveSSLs? What could I be doing wrong? On Apache, installing certificates under cPanel couldn’t be easier, paste in the certificate, paste in the bundle, hit the button and its installed.

Hi,

Please raise this as a support request by submitting a ticket at:
http://support.comodo.com

It might be that CPanel is picking the wrong key to match the certificate to.

Garry

I’ve manually put in both the certificate and the key. I’ve also done the install into httpd where manually choose the files to add. Support has been less than helpful with the problem. They keep pointing me back to the instructions as if it is an instruction following problem.

Use the following commands to compare the modulus of the certificate and the modulus of the key (substituting appropriate file names of course). If the output from the commands doesn’t match, then the key does not match the certificate.

$ openssl x509 -noout -modulus -in server.crt | openssl md5
$ openssl rsa -noout -modulus -in server.key | openssl md5

Regards,
Rich
Comodo Support

I as I said, the generated certifcate doesn’t match the key file. However, the generated key is emailed to me, so I’m sure it is the correct key.

Your only choice if the key doesn’t match the certificate is to start fresh with a new CSR and key. Send the new CSR in to support@comodo.com and ask to have your certificate re-issued.