Jump to content
  • Checkout
  • Login
  • Get in touch

osCommerce

The e-commerce.

Installing osCommerce Multiple Domains, 1SSL Cert.


supagene

Recommended Posts

Need some help with installing osCommerce where multiple domains with different content end up using only a single SSL certificate so I don't have to spend money on a bunch of certificates. Has anyone faced a similar problem?

 

How did you solve this problem, what files need to be stored on what domain (primary, secondary)? Primary being the one with the SSL root certificate.

 

Do I need to modify the osCommerce package? etc.

 

Thanks in advance,

Eugene :thumbsup:

Link to comment
Share on other sites

this is all going to depend upon your host, as this is a server / hosting issue and not oscommerce.

 

oscommerce only deals with you setting the path to your ssl certificate installed on your host and setting ssl to true.

 

everything is then server controlled, which you or your host controls. you need to ask them how you setup your server for sharing your certificate, as it is different from host to host.

Link to comment
Share on other sites

I talked to the host and they said that they can setup an SSL certificate for the root domain(the one that has an IP) while the other domains(virtual hosts) would need to switched to another account if I wanted to have a SSL certificate for them. I want to try to cut costs and have everything setup where the custumers purchase through each domain but the shopping cart goes through the main domain with the SSL certificate. I understand that I probably need to ask the host to set certain things up, but as a novice osCommerce user and a novice to SSL certificates I have no idea what I need to do. Any other suggestions as to the questions I should ask the host or what configuration procedures need to be done?

 

Thanks for answering the post so quickly.

:D

this is all going to depend upon your host, as this is a server / hosting issue and not oscommerce.

 

oscommerce only deals with you setting the path to your ssl certificate installed on your host and setting ssl to true.

 

everything is then server controlled, which you or your host controls.  you need to ask them how you setup your server for sharing your certificate, as it is different from host to host.

Link to comment
Share on other sites

You say that you want to cust costs. There are a lot of places where you can purchase SSL certificates. Some have significantly different prices from others. Will your cost-savings come at the risk of losing customers who don't want to buy from a website that has the wrong SSL certificate? Will you really be saving money in the long run, or hurting your own business?

 

Only you can answer that, as only you know who you're marketing your site to.

 

-jared

Link to comment
Share on other sites

Well, as I was explaining. The cutting of cost is not in what type of SSL certificate, I'm most likely going to use Verisign. The cost cutting come in because I'll use one certificate for all my sites. Anyone know of how to do that?

You say that you want to cust costs.  There are a lot of places where you can purchase SSL certificates.  Some have significantly different prices from others.  Will your cost-savings come at the risk of losing customers who don't want to buy from a website that has the wrong SSL certificate?  Will you really be saving money in the long run, or hurting your own business?

 

Only you can answer that, as only you know who you're marketing your site to.

 

-jared

Link to comment
Share on other sites

Why are you even bothering to buy one ssl certificate? The only benefit will be that one domain will have its own ssl certificate, and all of the users will be using it as a shared ssl cert. Why not just use the shared ssl cert provided by your host company - less hassle, same result.

 

Doing it your way then all sites other than the primary site would show warning pop-ups when accessing the ssl cert, because it won't match the domain it's being called from. Waste of time, effort, and money. Use the shared ssl, save yourself a lot of unnecessary hassle.

 

Vger

Link to comment
Share on other sites

The reason I didn't want to use a bunch of ssl cert. is because the host wants to charge me for a new account for each domain saying that they are vertual rightnow and will need a seperate ip for each one. Also, if I have to buy an ssl cert for each domain($400perSSL) then that would be too expensive for me at this time. Also if I go with a cheaper ssl provider like geotrust, then I might as well not inform my shoppers of the certificate I'm using, since most of them won't know who they are.

 

I was hoping there was a way to pass on cookies to the main site and have the main site handle all of the purchasing transactions or something. I have no idea. From my current understanding, I am basically stuck and have to buy the SSL certificates. Is that correct? :blush:

 

Why are you even bothering to buy one ssl certificate?  The only benefit will be that one domain will have its own ssl certificate, and all of the users will be using it as a shared ssl cert.  Why not just use the shared ssl cert provided by your host company - less hassle, same result.

 

Doing it your way then all sites other than the primary site would show warning pop-ups when accessing the ssl cert, because it won't match the domain it's being called from.  Waste of time, effort, and money.  Use the shared ssl, save yourself a lot of unnecessary hassle.

 

Vger

Link to comment
Share on other sites

No, you're not stuck. Your hosting company should provide a shared ssl address as part of the hosting package (no additional cost to you at all). Just use that shared address. It has the same effect as having one ssl on one domain and sharing it with others.

 

Also if I go with a cheaper ssl provider like geotrust, then I might as well not inform my shoppers of the certificate I'm using, since most of them won't know who they are.

 

Most shoppers don't know the names of any ssl providers. I use Geotrust Express SSL for all of my sites, my own and my e-commerce customers. They cost under $50 each, plus the dedicated ip address of course.

 

$400perSSL

 

That's a joke ....right?

 

Vger

Link to comment
Share on other sites

What would the setup steps be if I were to setup the osCommerce sites with a shared SSL cert. Is it complicated and has anyone writen a tutorial for this?

 

No, you're not stuck.  Your hosting company should provide a shared ssl address as part of the hosting package (no additional cost to you at all).  Just use that shared address.  It has the same effect as having one ssl on one domain and sharing it with others.

Most shoppers don't know the names of any ssl providers.  I use Geotrust Express SSL for all of my sites, my own and my e-commerce customers.  They cost under $50 each, plus the dedicated ip address of course.

That's a joke ....right?

 

Vger

About the 400 bucks thats no joke.

for 1 year of verisign $349

plus $100/y for keygeneration/installation. Rediculous huh. :'(

Link to comment
Share on other sites

I just read this off of another site,doesn't osCommerce use cookie-based PHP sessions?

 

If your site uses cookie-based PHP sessions, then the shared SSL

certificate is not going to work for you and you will need to buy your

own SSL certificate for your own domain name:

 

http://www.modwest.com/help/kb5-264.html

Link to comment
Share on other sites

do all the stores sell different products? why the different domains?

you dont need to use cookie based, not a real necessity, as things work with or without.

Link to comment
Share on other sites

Yes the stores sell completely unrelated products and most likely one customer will have no need to shop at the other store.

 

At the moment I have 4 domains.

 

1. www.companyname.com

2. www.productset1.com

3. www.productset2.com

4. www.productset3.com

 

I will be adding more later on.

 

I read some more posts and I'm guessing what I need is an SSL on

www.comanyname.com. Then have all the ssl transactions go through that site.

I have noticed there are a few posts of such nature but all off them are long and go through trial and error. Anyone willing to write a small tutorial on how this would be done? That way I'll be able to get mine setup and others can always refer to it later on.

 

Thanks in advance for eveyone's help. :D

 

do all the stores sell different products?  why the different domains?

you dont need to use cookie based, not a real necessity, as things work with or without.

Link to comment
Share on other sites

as i said in my original post to this, this is a server question and there are forums better related to your question/answer.

 

or your host may have someone who has skills in this. or find a host who will allow you to do this.

 

there are tutorials out there on other forums showing how to setup ssl.

apache.org has info on how to do this. it is also dependent upon the type of os you have, ie the brand, etc.

 

if u r not using apache then microsoft has info on how to do that.

Link to comment
Share on other sites

I had th smilar problem. I bought a domain with some generic name like

www.the_best_online_shopping.com. I got the SSL for that domain (with www. no wild cards) from godaddy.com for $29.99 a year. I set up my stores under

www.the_best_online_shopping.com/store1

www.the_best_online_shopping.com/store2 etc. I gave FTP access to the clients for their own store folders. it seems like working fine

Link to comment
Share on other sites

Archived

This topic is now archived and is closed to further replies.

×
×
  • Create New...