Multistore SSL and Payment Gateway

[zionlion]

In a multistore configuration using authorize.net for payment gateway how can the payment gateway be used for the 2nd, 3rd store?

 

Authorize.net requires SSL and I am also interested in maintaining high security, so the SSL is setup on the main domain.

 

The issue is, when setting up multistore the additional store domains are parked on the main domain, so adding SSL certificates to the 2nd and 3rd domains is not possible since they all reside on the same IP.

 

Currently, after trying different things, the 2nd and 3rd stores generate a warning when "checkout" is clicked :

 

" There is a problem with this website's security certificate. The security certificate presented by this website was issued for a different website's address. Security certificate problems may indicate an attempt to fool you or intercept any data you send to the server. We recommend that you close this webpage and do not continue to this website. "

 

Does anyone know of a solution to this, how can multistore run using SSL?

 

 

PrestaShop version 1.6.0.8

 

 

Thank you for your time.

Edited July 9, 2014 by zionlion (see edit history)

[bellini13]

Adding additional SSL to the same IP address is possible.  Have you spoken to your hosting provider on how to accomplish this?

[zionlion]

Adding additional SSL to the same IP address is possible.  Have you spoken to your hosting provider on how to accomplish this?

 

Yes, I have and the host has told me that it is not possible.

[zionlion]

Yes, I have and the host has told me that it is not possible.

They told me that a hosting company that does so is violating icann regulations?!?!

 

The only solution I was provided was to clone the stores on separate hosting accounts.

 

I would really hate to do that since the multistore feature is really what we need and have a lot of work in it already.

[bellini13]

Your hosting company should educate themselves on SNI

http://en.wikipedia.org/wiki/Server_Name_Indication

 

This technology allows assigning multiple IP addresses to a single shared IP address, and it does not violate any regulations

[zionlion]

Your hosting company should educate themselves on SNI

http://en.wikipedia.org/wiki/Server_Name_Indication

 

This technology allows assigning multiple IP addresses to a single shared IP address, and it does not violate any regulations

 

Does anyone have a recommendation for a hosting company that supports SNI or any other solution for multistore to work with SSL? 

[zionlion]

* Solution Found *

 

I ended up moving the stores to a new hosting company that supports SNI.

 

The way it needs to be configured is as follows:

 

Main domain and all additional store domain names need to have their own SSL certificate.

(In my case there are 6 stores in the multistore configuration, each with its own .com and SSL Cert.)

 

You do not park any of the domains on top of the main domain as per the PS guidelines, instead you put them in as ADD-ON domains and direct them to the root directory of your main store.

 

That is pretty much it, authorize.net and all https pages work fine.

 

Thanks for all your help.

[bellini13]

and they did this all under a single IP address, correct?

Edited July 25, 2014 by bellini13 (see edit history)

[gabriiel]

* Solution Found *

 

I ended up moving the stores to a new hosting company that supports SNI.

 

The way it needs to be configured is as follows:

 

Main domain and all additional store domain names need to have their own SSL certificate.

(In my case there are 6 stores in the multistore configuration, each with its own .com and SSL Cert.)

 

You do not park any of the domains on top of the main domain as per the PS guidelines, instead you put them in as ADD-ON domains and direct them to the root directory of your main store.

 

That is pretty much it, authorize.net and all https pages work fine.

 

Thanks for all your help.

 

How did you manage the multistore and multidomain with SSL enabled? I am fighting with this right now and doesn't work well for me. Where everywhere have you configured the SSL options? Only in general configuration, or have you had to configure separate https site URLS in backend configuration of multistore settings?