Individual SSL Certificates on Mapped Domains on Multisite?

Hi, I’m trying to setup the Stripe payment gateway for one of my clients. It requires an individual SSL (specific to the domain) in order to work. I’ve been advised that just a simple one like those Namecheap sells for under $10/yr will work just fine: http://www.namecheap.com/ssl-certificates.aspx

However, I have no idea how to go about setting this up for a Multisite Mapped Domain (using WPMU DEV Domain Mapping plugin). I’ve only ever setup WP with SSL once before, and the hosting provider setup the certificate. So I’m just trying to get it figured out before I proceed.

================

On a related issue, I read that if you put “https” in for the WordPress Address (URL) and Site Address (URL), it would force everything to run through https/SSL. On this other site I mentioned (single-site, not multi) I believe it was working that way before. However, now when you visit the http version it stays http, even though it’s set to https as described. Any ideas on how to always make it go to https?

  • Vaughan
    • Support/SLS MockingJay

    Hi @Tevya Washburn

    Thanks for posting, an excellent question.

    you would need to install the cert on your server for that new domain I believe. each single SSL can only be used with a specific domain, so as long as those domains are registered on your server, the SSL certs should work as normal as far as I’m aware.

    with regards to forcing to use https, you could do this with htaccess, though i’m not entirely sure it will work with domain mapping. but make sure really you have defined https in wp-config.php & your site url’s etc in settings. then recreated your permalinks. & edited your menu links to be https etc.

    RewriteEngine On
    RewriteCond %{SERVER_PORT} 80
    RewriteRule ^(.*)$ https://www.example.com/$1 [R,L]

    though if you are using marketpress, it would only use https when it’s needed for the gateway etc.

    Hope this gives you a bit more insight. if you require any further assistance , don’t hesitate to ask.

  • Ollie
    • The Incredible Code Injector

    Most good SSL cert companies force IA keys/certs also… I’ve found always generate a 2048 bit CSR and usually everything should go smooth from the offset.

    If it doesn’t hassle your hosts, as they get paid to handle things like SSL (if your server network admin is managed by them)

  • Tevya
    • Recruit

    Whoa! I’m not sure I’m following all of you. So you’re saying don’t go with NameCheap? I’m not finding anything similar on Certs4Less. The cheapest there is like $25/year.

    @vaughan I assume you’re referring to the 2nd half of my question. That part is a single-site. So no domain mapping involved. You can see it here: http://titlecache.com. And yes, it’s all set to “https” in the admin. I can’t figure out why it’s not working…?

  • Ingrid
    • Design Lord, Child of Thor

    Once you decide which certificate you are going to get, go into your hosting control panel you will likely have a “request CSR” (certificate signing request) which you provide to the certificate authority to obtain the certificate. Your host should be able and willing to set up the certificate for you on the server end.

    If you need to secure www as well as other subdomains then you should opt for a wildcard certificate. :slight_smile:

  • Ollie
    • The Incredible Code Injector

    @Tevya Washburn

    Yes thats right cheapest on certs4less is $25 per year… but as I said Namecheap charges their fee 2 to 4 times per year… Its not a yearly cost so its still around the same price. And the time you spend stuffing about with renewal, you’ll save that money if you go yearly.

    Yer dont go with namecheap if you want a good user experience…..

    Also to add to the request CSR, sometimes you need to host to manually generate 2048 bit version since most standard request csr buttons are usually 1024 bit by default.

Thank NAME, for their help.

Let NAME know exactly why they deserved these points.

Gift a custom amount of points.