Improve company productivity with a Business Account.Sign Up

x
?
Solved

Enable commerical digital certificate on Apache

Posted on 2011-02-20
2
Medium Priority
?
378 Views
Last Modified: 2013-12-06
Any idea how to generate and CSR on Apache Red Hat and import the digital certificate on it in order to enable https access ?

Thanks
0
Comment
Question by:AXISHK
2 Comments
 
LVL 2

Accepted Solution

by:
joshopkins earned 2000 total points
ID: 34937781
to gen the cert us

openssl req -new -newkey rsa:2048 -nodes -keyout server.key -out server.csr

Once you have the csr generated you need to submit it to a certificate authority (i.e. digicert.com, godaddy.com, versign.com, thawt.com).  After the cert has been issued to you the apache ssl conf file will need to be updated.  The location and name of this file can vary from server to server -- Especially if you use a special interface to manage your server configuration.

Apache configuration files are typically found in /etc/httpd. The main configuration file is usually named httpd.conf. In some cases the <VirtualHost> blocks will be at the bottom of this httpd.conf file. Sometimes you will find the <VirtualHost> blocks in their own files under a directory like /etc/httpd/vhosts.d/ or /etc/httpd/sites/ or in a file called ssl.conf.

If you need your site to be accessible through both secure (https) and non-secure (http) connections, you will need a virtual host for each type of connection.

An Example would be:

<VirtualHost 192.168.0.1:443>
DocumentRoot /var/www/html2
ServerName www.yourdomain.com
SSLEngine on
SSLCertificateFile /path/to/your_domain_name.crt
SSLCertificateKeyFile /path/to/your_private.key
SSLCertificateChainFile /path/to/DigiCertCA.crt
</VirtualHost>

Adjust the file names to match your certificate files:

    * SSLCertificateFile should be your DigiCert certificate file (eg. your_domain_name.crt).
    * SSLCertificateKeyFile should be the key file generated when you created the CSR.
    * SSLCertificateChainFile should be the DigiCert intermediate certificate file (DigiCertCA.crt)

      If the SSLCertificateChainFile directive does not work, try using the SSLCACertificateFile directive instead.
0
 

Author Closing Comment

by:AXISHK
ID: 35063974
Tks
0

Featured Post

Free Tool: ZipGrep

ZipGrep is a utility that can list and search zip (.war, .ear, .jar, etc) archives for text patterns, without the need to extract the archive's contents.

One of a set of tools we're offering as a way to say thank you for being a part of the community.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

In my business, I use the LTS (Long Term Support) versions of Linux. My workstations do real work, and so I rarely have the patience to deal with silly problems caused by an upgraded kernel that had experimental software on it to begin with from a r…
This article will explain how to establish a SSH connection to Ubuntu through the firewall and using a different port other then 22. I have set up a Ubuntu virtual machine in Virtualbox and I am running a Windows 7 workstation. From the Ubuntu vi…
How to Install VMware Tools in Red Hat Enterprise Linux 6.4 (RHEL 6.4) Step-by-Step Tutorial
In response to a need for security and privacy, and to continue fostering an environment members can turn to for support, solutions, and education, Experts Exchange has created anonymous question capabilities. This new feature is available to our Pr…

584 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question