The following instructions will guide you through the SSL installation process on Apache OpenSSL. If you have more than one server or device, you will need to install the certificate on each server or device you need to secure.

 

What You’ll Need

  1. Your server certificate
    This is the certificate you received from the CA for your domain. You may have been sent this via email. If not, you can download it by visiting your Account Dashboard and clicking on your order.

  2. Your intermediate certificates
    These files allow the devices connecting to your server to identify the issuing CA. There may be more than one of these certificates. If you got your certificate in a ZIP folder, it should also contain the Intermediate certificate(s), which is sometimes referred to as a CA Bundle. If not, download the appropriate CA Bundle for your certificate.

  3. Your private key
    This file should be on your server, or in your possession if you generated your CSR from a free generator tool. 

Note: The above files should be saved to the server directory where all certificate/key files are stored.

 

Installation Instructions

1. Locate the apache config file to edit
The main config file is typically called httpd.conf or apache2.conf and located via /etc/httpd or /etc/apache2/.

Note: The SSL config file can be in a <VirtualHost> block in another config file. You can always search for the SSL conf file on Linux distributions using this grep command: grep -i -r “SSLCertificateFile” /etc/httpd/

2. Configure the file and enter commands
Configure the httpd.conf file and enter the following commands on your VirtualHost to successfully enable SSL:

<VirtualHost 192.168.0.1:443>
    DocumentRoot /var/www/html2
    ServerName www.yourdomain.com
    SSLEngine on
    SSLCertificateFile /path/to/your_domain_name.crt
    SSLCertificateKeyFile /path/to/your_private.key
    SSLCertificateChainFile /path/to/cabundle.crt
</VirtualHost>

Note: If you need the site to load via https and http, create another virtual host for http. You can simply copy the existing config file before making any during this step.

3. Run a command test
Test your new config file by running the following command:
apachectl configtest

4. Restart Apache
If successfully tested, restart Apache by running the following commands:
apachectl stop
apachectl start

Note: You may be asked to enter the password you generated with your RSA key. If you do not want to be asked for a password, you will need to re-generate your RSA key file.

Congratulations! You’ve successfully installed your SSL certificate! To check your work, visit the website in your browser at https://yourdomain.tld and view the certificate/site information to see if HTTPS/SSL is working properly. Remember, you may need to restart your server for changes to take effect.

To check your server’s configurations more thoroughly, use SSL Labs Free Online tool

 

Found this article interesting?
Subscribe to DomainRegister´s newsletter!

You can unsubscribe at any time by simply clicking the link in the footer of our emails. For information about our privacy practices, please visit our website.

We use Mailchimp as our marketing platform. By clicking below to subscribe, you acknowledge that your information will be transferred to Mailchimp for processing. Learn more about Mailchimp s privacy practices here.

  • OpenSSL, SSL, Apache
  • 0 uporabniku/om je bi članek v pomoč
Vam je bil odgovor v pomoč?

Povezani članki

 What is the difference between SHA-1 and SHA-2 ?

SHA stands for Signature Hashing Algorithm;  It's a mathematical hash that proves the...

 What is an intermediate certificate and how to get it?

An intermediate certificate is a file needed by the web browser to identify the C.A. who issued...

 How can I install my SSL certificate on more than one server?

Many SSL certificate licences allow to install the same certificate on an unlimited number of...

 How To Fix The Warning : "Site Contains Secure & Non-Secure Items"

A SSL certificate provides cover for all your website files and folders, which are included in...

 I have accidentally deleted my "private key": what can I do now?

First check your backups and see if you can re-install the "private key". If you don't know how...