Im using latest ROS 3.19.
Well I have User Manager with hotspot and PPPoE server (on same ethernet interface) with Radius on local machine .
For now everything is fine.
Now when I try to make PayPal payments , also using tutorial from wiki :
http://wiki.mikrotik.com/wiki/User_Manager/User_payments#PayPal
I have problems:
When I login like normal user in user account I have option buy credit , and when I click on To buy credit, use secure connection! Click here
I have error code:-12263
google tell me that this error is something with certificates.
I was create certificate under VMware fedora8 , also try with different browsers (mozzila firefox and IE 7) an problem is still here.
Can somebody help me?
To create and import Certificate, use the following guideline,
http://wiki.mikrotik.com/wiki/User_Manager/User_payments#HTTPS_connection_enabling
You can use non-secure response as well, set paypal-secure-response=no, then certificate is not required.
I was using exactly this guide for creating certificate …
Only confusing thing is that my IP www service is runing on port 8081 (and my usermanager is have address like http://mymikrotik.host.com:8081/userman or for users http://mymikrotik.host.com:8081/user
So I was try to make certificate for mymikrotik.host.com
and also mymikrotik.host.com:8081
without succes in both time 
My domain mymikrotik.host.com is running on ADSL line which change public IP every 24 hours , but my client (on other machine) is regulary update DNS records …
You can use non-secure response as well, set paypal-secure-response=no, then certificate is not required.
Hm I was also try this without succes … give me error like in first post .
Im upgrade ROS to 3.20 , also I was made keys in CENT os 5.2 server (wmare) …
when I importing keys in mikrotik here is output:
/certificate import file-name=server.crt
passphrase: ****
certificates-imported: 1
private-keys-imported: 0
files-imported: 1
decryption-failures: 0
keys-with-no-certificate: 0
As you see it is diffrent from wiki pages ???
Also :
/certificate import file-name=server.key
passphrase: ****
certificates-imported: 0
private-keys-imported: 1
files-imported: 1
decryption-failures: 0
keys-with-no-certificate: 0
And I still have same error …
Can somebody help me ? looks that I have problem with certificates …
What happens with a paypal transaction if you switch off secure response? That will prove there are no other problems stopping this working. Then when you are happy it is working, you can switch to using a SSL interface for paypal to communicate with. That is how we originally got our portal working. First we tested with non-secure, then installed certificate later.
Not sure from your post, but I think you are trying to create a certificate related to the port you are using (8081). SSL Certicates are not created for any port. Just a domain name.
If your public IP keeps changing, this is not a problem either. Use a dynamic DNS name service (changeip, dyndns). Then create a SSL certificate for that dynamic name. It works for us with no problem!
Ron
Ok Im switch off secure response with browser on my usermanager
(http://hotspotname.mydomain.com:8081/userman) … Also delete certificates , and disable www-ssl service via winbox.
So when I log like ordinary user (http://hotspotname.mydomain.com:8081/user) how I can buy credits ? When I click buy credit I have security alert :
To buy credit, use secure connection! Click here … and same error like in the begining …
So how to buy without secure alert … there is no link for unsecure buying ???
OK - I misunderstood your original problem. Sorry.
With your latest information, I now think the problem is your use of port 8081. Paypal is usually trying to connect to port 80 for non-secure traffic and port 443 for ssl? How does PayPal know that your SSL secure website (Usermanager) is running on a strange Port of 8081? Did you type into usermanager paypal settings yourdomainname:8081 ?
I have never done this, also not sure this is supported by PayPal?
Also, check that the SSL certficate’s common name is exactly the same as your usermanager domain name.
Ron
HM now Im change IP service www from 8081 to 80 … everything is work but Im canot connect winbox … I change port to 8291 and also no connection … do I need restart or run hotspot setup again ?
Update … I cannot connect winbox to ether2 where is running hotspot and PPPOE server , but I can connect from other segment where is only masquerade … Hm and also I was try to connect to usermanager with browser … now only on port 80 and it is not avalable …
Now im swich back my ip www to 8081 port … Any idea why is this happening is welcome …
When you have changed the www port back to 80, you said it was working. Did you mean that PayPal now connects OK and usermanager initialises the credit? Look in “/tool user-manager payment” for more information about any payment transactions.
You cannot connect to Winbox from the hotspot interface.
Without more detailed information about your configuration, it is difficult to help further.
Ron.