Applicable to:
- Plesk for Linux
- Plesk for Windows
Question
Domain example.com is secured by valid certificate. Why is SSL privacy warning shown when accessing Plesk panel UI using customer's domain name at https://example.com:8443?
CONFIG_TEXT: Your connection is not private
or:
CONFIG_TEXT: NET::ERR_CERT_COMMON_NAME_INVALID
or:
CONFIG_TEXT: Connection not secure
Answer
Plesk interface on port 8443 is different service and is secured by an SSL issued to the server hostname. Domain example.com at default pot 443 has its own certificate issued for this particular domain name. So https://example.com will show valid SSL issued for example.com, while https://example.com:8443 will detect that SSL for example.com is not the same as for the server hostname.
To avoid the privacy warning, access Plesk using main server hostname URL secured by Let's Encrypt. For example, if the hostname is hostname.com, the link will be https://hostname.com:8443.
The link may be used by any customer, domain owner, reseller, or administrator.
Alternatively, issue the UCC SSL certificate covering several domains from any convenient SSL authority. After that install this certificate using instructions.
Additional information
How to use different SSL certificates for Plesk UI (over port 8443)?
Comments
4 comments
In my opinion this is a really bad behavior!!
My customers want access to plesk with their own domainame:8443, not by the hostname:8443
I think this is not acceptable in any case.
Same problem happens with email configuration, if you want SSL on a specific domain, you need to use the hostname domain.
Thats wrong in my point of view.
Hello Alex Rubio
Thank you for the feedback.
1. There're plans to improve behavior with Plesk login page access via various domains: https://plesk.uservoice.com/forums/184549-feature-suggestions/suggestions/6640242-supporting-ssl-resellers?page=2&per_page=20
Feel free to vote for this functionality.
2. As for EMAIL, the SNI is already available for Plesk Obsidian, make sure your server satisfies prerequisites: https://support.plesk.com/hc/en-us/articles/115001446174
I was getting the ssl warning when using my site ip address to access plesk. I tried the domain name, and got the same result. This does not solve the problem.
HELP!
I am locked out of Plesk because I receive "your connection isn't private". Also when I choose advanced I do not have a choice to proceed. Instead I receive message:
----------plesk.page uses encryption to protect your information. When Microsoft Edge tried to connect to ------.plesk.page this time, the website sent back unusual and incorrect credentials. This may happen when an attacker is trying to pretend to be ------.plesk.page, or a Wi-Fi sign-in screen has interrupted the connection. Your information is still secure because Microsoft Edge stopped the connection before any data was exchanged.
Please help me ASAP! I am trying to contact support but I cannot get the key to Plesk because I cannot login!
Please sign in to leave a comment.