Articles in this section

See more

SSL privacy warning is shown when accessing Plesk interface using customer domain name

Avatar
Alexander Tsmokalyuk
Updated
Follow
Plesk for Windows Plesk for Linux kb: technical ext: le ABT: Group B

Applicable to:

  • Plesk for Linux
  • Plesk for Windows

Question

Domain example.com is secured by valid certificate. Why is SSL privacy warning shown when accessing Plesk panel UI using customer's domain name at https://example.com:8443?

CONFIG_TEXT: Your connection is not private

or:

CONFIG_TEXT: NET::ERR_CERT_COMMON_NAME_INVALID

or:

CONFIG_TEXT: Connection not secure

Answer

Plesk interface on port 8443 is different service and is secured by an SSL issued to the server hostname. Domain example.com at default pot 443 has its own certificate issued for this particular domain name. So https://example.com will show valid SSL issued for example.com, while https://example.com:8443 will detect that SSL for example.com is not the same as for the server hostname.

To avoid the privacy warning, access Plesk using main server hostname URL secured by Let's Encrypt. For example, if the hostname is hostname.com, the link will be https://hostname.com:8443.

The link may be used by any customer, domain owner, reseller, or administrator.

Alternatively, issue the UCC SSL certificate covering several domains from any convenient SSL authority. After that install this certificate using instructions.

Additional information

How to configure a redirect from the domain name/IP address to the server hostname on port 8443 in Plesk for Linux?

How to use different SSL certificates for Plesk UI (over port 8443)?

Comments

4 comments

Sort by Date Votes
  • Avatar
    Alex Rubio

    In my opinion this is a really bad behavior!!
    My customers want access to plesk with their own domainame:8443, not by the hostname:8443

    I think this is not acceptable in any case.

    Same problem happens with email configuration, if you want SSL on a specific domain, you need to use the hostname domain.
    Thats wrong in my point of view.

    0
    Comment actions Permalink
  • Avatar
    Ivan Postnikov

    Hello Alex Rubio

    Thank you for the feedback.

    1. There're plans to improve behavior with Plesk login page access via various domains: https://plesk.uservoice.com/forums/184549-feature-suggestions/suggestions/6640242-supporting-ssl-resellers?page=2&per_page=20

    Feel free to vote for this functionality.

    2. As for EMAIL, the SNI is already available for Plesk Obsidian, make sure your server satisfies prerequisites: https://support.plesk.com/hc/en-us/articles/115001446174

    0
    Comment actions Permalink
  • Avatar
    Thomas Kirby

    I was getting the ssl warning when using my site ip address to access plesk.  I tried the domain name, and got the same result. This does not solve the problem.

    1
    Comment actions Permalink
  • Avatar
    GIANNIS ANGELAKIS

    HELP!

     

    I am locked out of Plesk because I receive "your connection isn't private". Also when I choose advanced I do not have a choice to proceed. Instead I receive message:

    ----------plesk.page uses encryption to protect your information. When Microsoft Edge tried to connect to ------.plesk.page this time, the website sent back unusual and incorrect credentials. This may happen when an attacker is trying to pretend to be ------.plesk.page, or a Wi-Fi sign-in screen has interrupted the connection. Your information is still secure because Microsoft Edge stopped the connection before any data was exchanged.

    Please help me ASAP! I am trying to contact support but I cannot get the key to Plesk because I cannot login!

    0
    Comment actions Permalink

Please sign in to leave a comment.

Have more questions? Submit a request

Related articles