Specify the redirect host value when http is used on an https protocol
If you’ve enabled SSL=1 and the User enters http, then DA will give them the server IP redirect by default. This option will allow the admin to specify the value of the hostname in the redirect, which has an added benefit of forcing them to use the host that matches the certificate to valid ssl errors.
The directadmin.conf option will be:
ssl_redirect_host=host.name.com
The default setting is for the value to not be present in the directadmin.conf.
When it’s not present, the server IP will be used. With the option present, it’s value will be used (even it’s it’s blank) so make sure it only there if you want to use it.
Source: http://www.directadmin.com/
How to setup DA with an SSL certificate
If you already have your own certificate and key, then paste them into the following files:
certificate: /usr/local/directadmin/conf/cacert.pem
key: /usr/local/directadmin/conf/cakey.pem
Edit the /usr/local/directadmin/conf/directadmin.conf and set SSL=1 (default is 0). This tells DA to load the certificate and key and to use an SSL connection. DirectAdmin needs to be restarted after this change.
If you also have a CA Root Certificate, this can be specified by adding:
carootcert=/usr/local/directadmin/conf/carootcert.pem
into the /usr/local/directadmin/conf/directadmin.conf file and by pasting the contents of the caroot cert into that file.
Source: http://directadmin.com/
Creating your own certificates for DirectAdmin
Advantage of creating your own certificates:
You can switch DirectAdmin to use SSL instead of plain text. -> https instead of http on port 2222.
If you do not have your own certificates, you’ll need to create your own:
/usr/bin/openssl req -x509 -newkey rsa:1024 -keyout /usr/local/directadmin/conf/cakey.pem -out /usr/local/directadmin/conf/cacert.pem -days 9999 -nodes
And then
chown diradmin:diradmin /usr/local/directadmin/conf/cakey.pem
chmod 400 /usr/local/directadmin/conf/cakey.pem
Note that if the value does not exist in the directadmin.conf, it will be the default internal value within DirectAdmin.
Adding a value to the directadmin.conf would override the internal default.
You can always see what values are being used on your system by typing:
/usr/local/directadmin/directadmin c
Variables with default values which are (null) should not be added to the directadmin.conf unless you plan on using them.
If you want to remove that variable, then completely remove it from the directadmin.conf
Removing Reseller’s Access to Server’s Shared IP in DirectAdmin
As an Admin, you can give Resellers the ability to create User web sites using the Server’s Shared (main) IP address. At this time, you cannot remove this ability through the control panel.
To solve the problem manually, remove the desired IP address from the ip.list file in the Reseller’s DirectAdmin config directory
Reseller’s DirectAdmin config directory
/usr/local/directadmin/data/users/username/ip.list
This change will not affect the Reseller’s current Users (if they are using the server’s main IP, they will continue to do so.
Source & credit - http://www.directadmin.com
