Setting up a custom domain

arthurva edited this page Aug 15, 2017 · 10 revisions

The custom domain feature is available for Elite members.
In this article we'll let you know about some technical aspects that will will help you set up a custom domain for your groups.

Setting up your DNS records

If you have upgraded your mobilize account to the Elite version and want to use a domain name you already own, follow these directions:

  1. First, decide on the domain of your community. Example: lets assume that you own custom-domain.com and you want to set your mobilize community under community.custom-domain.com
  2. Log in to your domain registrar and find the advanced domain settings area or where you manage your domain’s DNS records.
  3. Point your domain’s CNAME record (in our example it would be community.custom-domain.com) to "{your original subdomain}.custom-domain.mobilize.io" Enter the domain name on your Mobilize.io Settings page and click the "Save changes" button.
  4. It will then take up to 72 hours for the change to fully take place.

Set up the SSL certificate

  1. Acquire an SSL certificate
  2. Install openSSL if not already installed on your system.
  3. type the following commands in the terminal/command prompt to create a private key file server.key and create certificate request file server.csr:
openssl genrsa -des3 -passout pass:x -out server.pass.key 2048
openssl rsa -passin pass:x -in server.pass.key -out server.key
rm server.pass.key
openssl req -new -key server.key -out server.csr

you will be prompted some questions we need to answer:

You are about to be asked to enter information that will be incorporated
into your certificate request.
What you are about to enter is what is called a Distinguished Name or a DN.
There are quite a few fields but you can leave some blank
For some fields there will be a default value,
If you enter '.', the field will be left blank.
-----
Country Name (2 letter code) [AU]: US
State or Province Name (full name) [Some-State]: California
Locality Name (eg, city) []: San Francisco
Organization Name (eg, company) [Internet Widgits Pty Ltd]: My Company
Organizational Unit Name (eg, section) []: Community Management
Common Name (e.g. server FQDN or YOUR name) []: community.mycompany.com (the custom domain you are about to set, yo can also use wildcards)
Email Address []: community@mycompany.com

Please enter the following 'extra' attributes
to be sent with your certificate request
A challenge password []:
An optional company name []:
  1. Use the server.csr files you created to buy an SSL certificate from a certificate seller such as GoDaddy or Verisign.
    They should provide you with a certificate file server.crt and other intermediate certificates.
  2. Navigate to the integrations tab in network settings and click "Enable Custom Domain".
  3. Paste the content of server.key in the private key text-box.
  4. Paste server.crt and the intermediate certificates in the "certificate chain" text-box.

Troubleshooting

If you get an SSL error while trying to set your SSL certificate on mobilize please check the following:

  1. Your private key is NOT password protected
    if it is remove the password with openssl rsa -in server.pass.key -out server.key
  2. Your private key is in RSA format
    You can verify that by making sure server.key starts with -----BEGIN RSA PRIVATE KEY----- and NOT -----BEGIN PRIVATE KEY-----

If you get an SSL error on some devices but not on Chrome, you may need to add your intermediate certificates.
you can make sure your custom-domain settings works using this utility

FYI: Your Mobilize groups might not be available for up-to 30 minutes while we create your custom domain.

Clone this wiki locally
You can’t perform that action at this time.
You signed in with another tab or window. Reload to refresh your session. You signed out in another tab or window. Reload to refresh your session.
Press h to open a hovercard with more details.