Want to win a PS4? Go Premium and enter to win our High-Tech Treats giveaway. Enter to Win

x
?
Solved

Enable commerical digital certificate on Apache

Posted on 2011-02-20
2
Medium Priority
?
370 Views
Last Modified: 2013-12-06
Any idea how to generate and CSR on Apache Red Hat and import the digital certificate on it in order to enable https access ?

Thanks
0
Comment
Question by:AXISHK
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 2

Accepted Solution

by:
joshopkins earned 2000 total points
ID: 34937781
to gen the cert us

openssl req -new -newkey rsa:2048 -nodes -keyout server.key -out server.csr

Once you have the csr generated you need to submit it to a certificate authority (i.e. digicert.com, godaddy.com, versign.com, thawt.com).  After the cert has been issued to you the apache ssl conf file will need to be updated.  The location and name of this file can vary from server to server -- Especially if you use a special interface to manage your server configuration.

Apache configuration files are typically found in /etc/httpd. The main configuration file is usually named httpd.conf. In some cases the <VirtualHost> blocks will be at the bottom of this httpd.conf file. Sometimes you will find the <VirtualHost> blocks in their own files under a directory like /etc/httpd/vhosts.d/ or /etc/httpd/sites/ or in a file called ssl.conf.

If you need your site to be accessible through both secure (https) and non-secure (http) connections, you will need a virtual host for each type of connection.

An Example would be:

<VirtualHost 192.168.0.1:443>
DocumentRoot /var/www/html2
ServerName www.yourdomain.com
SSLEngine on
SSLCertificateFile /path/to/your_domain_name.crt
SSLCertificateKeyFile /path/to/your_private.key
SSLCertificateChainFile /path/to/DigiCertCA.crt
</VirtualHost>

Adjust the file names to match your certificate files:

    * SSLCertificateFile should be your DigiCert certificate file (eg. your_domain_name.crt).
    * SSLCertificateKeyFile should be the key file generated when you created the CSR.
    * SSLCertificateChainFile should be the DigiCert intermediate certificate file (DigiCertCA.crt)

      If the SSLCertificateChainFile directive does not work, try using the SSLCACertificateFile directive instead.
0
 

Author Closing Comment

by:AXISHK
ID: 35063974
Tks
0

Featured Post

Fill in the form and get your FREE NFR key NOW!

Veeam® is happy to provide a FREE NFR server license to certified engineers, trainers, and bloggers.  It allows for the non‑production use of Veeam Agent for Microsoft Windows. This license is valid for five workstations and two servers.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

After running Ubuntu some time, you will be asked to download updates for fixing bugs and security updates. All the packages you download replace the previous ones, except for the kernel, also called "linux-image". This is due to the fact that w…
If you've heard about htaccess and it sounds like it does what you want, but you're not sure how it works... well, you're in the right place. Read on. Some Basics #1. It's a file and its filename is .htaccess (yes, with a dot in the front). #…
How to Install VMware Tools in Red Hat Enterprise Linux 6.4 (RHEL 6.4) Step-by-Step Tutorial
Want to learn how to record your desktop screen without having to use an outside camera. Click on this video and learn how to use the cool google extension called "Screencastify"! Step 1: Open a new google tab Step 2: Go to the left hand upper corn…
Suggested Courses

604 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question