?
Solved

Enable commerical digital certificate on Apache

Posted on 2011-02-20
2
Medium Priority
?
366 Views
Last Modified: 2013-12-06
Any idea how to generate and CSR on Apache Red Hat and import the digital certificate on it in order to enable https access ?

Thanks
0
Comment
Question by:AXISHK
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 2

Accepted Solution

by:
joshopkins earned 2000 total points
ID: 34937781
to gen the cert us

openssl req -new -newkey rsa:2048 -nodes -keyout server.key -out server.csr

Once you have the csr generated you need to submit it to a certificate authority (i.e. digicert.com, godaddy.com, versign.com, thawt.com).  After the cert has been issued to you the apache ssl conf file will need to be updated.  The location and name of this file can vary from server to server -- Especially if you use a special interface to manage your server configuration.

Apache configuration files are typically found in /etc/httpd. The main configuration file is usually named httpd.conf. In some cases the <VirtualHost> blocks will be at the bottom of this httpd.conf file. Sometimes you will find the <VirtualHost> blocks in their own files under a directory like /etc/httpd/vhosts.d/ or /etc/httpd/sites/ or in a file called ssl.conf.

If you need your site to be accessible through both secure (https) and non-secure (http) connections, you will need a virtual host for each type of connection.

An Example would be:

<VirtualHost 192.168.0.1:443>
DocumentRoot /var/www/html2
ServerName www.yourdomain.com
SSLEngine on
SSLCertificateFile /path/to/your_domain_name.crt
SSLCertificateKeyFile /path/to/your_private.key
SSLCertificateChainFile /path/to/DigiCertCA.crt
</VirtualHost>

Adjust the file names to match your certificate files:

    * SSLCertificateFile should be your DigiCert certificate file (eg. your_domain_name.crt).
    * SSLCertificateKeyFile should be the key file generated when you created the CSR.
    * SSLCertificateChainFile should be the DigiCert intermediate certificate file (DigiCertCA.crt)

      If the SSLCertificateChainFile directive does not work, try using the SSLCACertificateFile directive instead.
0
 

Author Closing Comment

by:AXISHK
ID: 35063974
Tks
0

Featured Post

WordPress Tutorial 4: Recommended Plugins

Now that you have WordPress installed, understand the interface, and know how to install new parts, let’s take a look at our recommended plugins.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

After running Ubuntu some time, you will be asked to download updates for fixing bugs and security updates. All the packages you download replace the previous ones, except for the kernel, also called "linux-image". This is due to the fact that w…
In Solr 4.0 it is possible to atomically (or partially) update individual fields in a document. This article will show the operations possible for atomic updating as well as setting up your Solr instance to be able to perform the actions. One major …
How to Install VMware Tools in Red Hat Enterprise Linux 6.4 (RHEL 6.4) Step-by-Step Tutorial
If you’ve ever visited a web page and noticed a cool font that you really liked the look of, but couldn’t figure out which font it was so that you could use it for your own work, then this video is for you! In this Micro Tutorial, you'll learn yo…
Suggested Courses

770 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question