SSL installation

[jan_mull]

If I have an MS2-MAX 1.5 installed without SSL enabled, can I then afterwards configure it for SSL or do I need to reinstall with the SSL enabled option checked?

I am a newbie with regards to SSL ...

Thanks guys!
Jan

[michael_s]

Yes, you can easily set this up by manually editing the configure.php files - it is only 2 or 3 lines that you need to add the SSL path. It is pretty easy to do.

[jpf]

You could do that (provided you have all the required info handy again and you put the 'install' directory back and you DON'T IMPORT the 'default' database again).

But all you really have to do is change BOTH configure.php files - add in your https server and set SSL to 'true' - save/upload - done!

[jan_mull]

Thanks, I opted to rerun the installer and set it up as SSL enabled:

I copied the checkout pages over to my https server and and when I do a checkout, it returns a blank page. Now, I have noticed that the checkout_shipping.php page for example requires some other php pages in the catalog/includes directory. Should I copy those files also over to the secured server and update the path references in the checkout_shipping.php? or is there some setting somewhere to be set?

Secondly, I see that my admin module claims not to be protected by ssl either. Should I copy the whole admin directory basically over to my ssl server?

I would really appreciate your feedback on this.

Thanks
Jan

[jpf]

Most hosts can setup a Sybmloic link between the two directories then you don't have to copy anything. (like product/catagories images) - other than that - MOVE your admin to the SSL and duplicate all files in the SSL that are needed (nearly all....). You will have to do this for ALL your images - evertime you update them.

[jan_mull]

Thanks, my SSL appears to be functioning now, however my Admin module says at the bottom left "protected by an unknown SSL connection". I am suppose to have a Comodo SSL certificate installed on the server -- so how do I check my SSL certificate for proper functioning?

Jan

[jpf]

If you type in the address bar 'https://www.yoursecuresite.com' and the "lock" on the bottom of the screen appaers and is closed - then it worked. If you go a CERTIFICATE ERROR message (from the browser) then there is some thing wrong.

[bumpy]

The problem is not that SSL is not working, but how to get the image at the bottom left corner of the first Admin nav page, to stop Alerting that You are not protected by a Secure Connection.

MSasek quotes the same link, regarding Shared SSL and the 2 configure.php files. That does make the SSL functional, but doesn't get OSCMax to choose to display You are protected by a Secure connection...

for us deploying a site for a customer, it will be disturbing to the Customer, no matter what the lock and URL say.