OpenShift with Comodo SSL

Question

I am trying to upload the SSL certificates for my OpenShift gear's alias. I used the instructions here: http://cloudhostingsource.com/setup-ssl-certificate-openshift/

I am stuck however at the uploading part - I have already genereated the CSR, activated the certificate. Every time I try to upload the files it takes me back to the same page without so much as a notification.

Comodo SSL sent me 4 files:

1. AddTrustExternalCARoot.crt
2. COMODORSAAddTrustCA.crt
3. COMODORSADomainValidationSecureServerCA.crt
4. myApp.crt

How do I upload these? There are three fields to upload for Openshift... Which do I load into SSL Certificate? Certificate chain? I have my private key and I know the keypass.

Thanks

Answer 1

Just wanted to post an update for this for users who run into this issue in the future... I'm not sure if it was because I had added a public SSH key via the RHC setup but nothing I did (no permutations of copy paste chaining, switching files around) would work via the file uploader.

In the end, before deciding to call Red Hat and QQ, I used the command line console to add the SSL files...

Here is the command I used:

rhc alias update-cert php www.myapp.com --certificate myApp.crt --private-key myApp.key --passphrase mypass

This link includes more info: https://access.redhat.com/documentation/en-US/OpenShift_Online/2.0/html/User_Guide/Using_Custom_SSL_Certificates1.html

TLDR: You don't need to combine any of the Comodo files, just use your file #4, your privatekey, and your passphrase (if you have one)

Answer 2

Thats right!

First combine public with bundle:

cat dom_com.crt dom_com.ca-bundle >> dom_com.ALL.bundle

and upload both:

rhc alias update-cert app dom_com \
    --certificate dom_com.ALL.bundle \
    --private-key dom_com.key

And then you will obtain an A at https://www.ssllabs.com/ssltest/