Steps for implementation of SSL for one domain but on many load balanced servers

I have one website which is load balanced on more than one server. I was told that I only need to pay for one certificate because I have one hostname (or domain) and then I can install them on all other servers.
My questions are:
1- What do I give the CA (Verisign, thawte, etc) so they can sign it and give it back to me
2- How do I install it on all servers
3- What do I need to backup for future installations?
Who is Participating?
Tim HolmanConnect With a Mentor Commented:
1)  You need to generate a private key and CSR (certificate signing request).  You send this to the CA, then they will send you back the SLL certificate.  

2)  Do you use IIS or Apache ?  With IIS you import an SSL certificate with the Key Manager utility, with Apache, you just dump it into one of the files -

3)  Backup your private key, and the certificate itself.

What load balancers do you use ?  Can you use them to offload SSL ?  Running SSL directly on web servers will slow them down considerably.
kalmenAuthor Commented:
I see, thanks.

So I need to keep the private key and public key as backup? And I can add them to any server that hosts the same domain/hostname.

The load balancers I used have an SSL accelerator installed, so that reduces a lot of load from my servers.

Tim HolmanCommented:
You should be able to install the SSL cert on just the SSL accelerators themselves, then have the web servers serve up HTTP content which in turn is encrypted by your SSL acceleration device.
In terms of backup, private key AND certificate are required (and a copy of the password !).
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.