Install new SSL certificate on TN.org

[laura]

The SSL certificate has been renewed today via Gandi and needs to be set up.
(Chris see email sent earlier today!)

[chris]

Whoever gets admin@… will need to click through a link:

we will send a confirmation email to the address
admin@… for validation. If
this address does not exist, then you will need
to create it first.

I'm following the process documented at wiki:NewLiveServer#HTTPS

[laura]

Hi Chris -
Thanks for this.
I received the email, logged in and validated the request. (received message - Confirmation registered. The SSL activation process will now continue).

[chris]

Thanks, it's "In progress"... the existing cert is valid till 10th Feb so we can wait to see where it's at on Monday.

[chris]

It's still "in progress" -- I have raised a ticket with gandi about this.

[chris]

This is the reply from gandi.net:

On Fri 13-Jan-2012 at 01:02:13PM +0100, pro-en@… wrote:

Hi Chris,

Actually your SSL request is at the last step in the validation
process. You should have received a verification mail sent by our
partner Comodo to the e-mail address admin@…. In
this mail you will find a validation link.

Once you have done that validation, your SSL certificate will be
issued right away.

If that mailbox does not exist, please create it and make sure that it
works. Then get back to me so I can relaunch the request which will
make Comodo resend that mail.

I am at your disposal should you need any further information.

Best regards,

Karim

Laura, can you double check that there isn't a email to admin@ that you missed?

[laura]

Hmm, looking into this, I don't think I receive admin@ emails....

[chris]

Replying to laura:

I don't think I receive admin@ emails....

We need to track down who does as they will have one to click through to renew the cert.

[laura]

Replying to chris:

Replying to laura:

I don't think I receive admin@ emails....

We need to track down who does as they will have one to click through to renew the cert.

Just looked on the UH cpanel for email accounts and also email forwarders... nowt for admin@ (unless you know any different from your bits there!) Let me know if I need to set up an admin@ email account or forwarder.
Thanks

[chris]

Replying to laura:

Let me know if I need to set up an admin@ email account or forwarder.

Yes, either, all it'll get is a email once a year to renew the cert with a link that needs to be clicked, set it up as an alias for webproject@ or yourself or whatever and let me know when it's done and I'll email gandi.net to ask them to have the email resent.

[laura]

Replying to chris:

Replying to laura:

Let me know if I need to set up an admin@ email account or forwarder.

Yes, either, all it'll get is a email once a year to renew the cert with a link that needs to be clicked, set it up as an alias for webproject@ or yourself or whatever and let me know when it's done and I'll email gandi.net to ask them to have the email resent.

I've set admin@… to forward to webproject@ (which forwards to my tn email address!)

[chris]

I have installed and tested the new certificates on both the live and the development servers, everything seems fine so I'm closing this ticket.