Solved

Enable commerical digital certificate on Apache

Posted on 2011-02-20
2
360 Views
Last Modified: 2013-12-06
Any idea how to generate and CSR on Apache Red Hat and import the digital certificate on it in order to enable https access ?

Thanks
0
Comment
Question by:AXISHK
2 Comments
 
LVL 2

Accepted Solution

by:
joshopkins earned 500 total points
ID: 34937781
to gen the cert us

openssl req -new -newkey rsa:2048 -nodes -keyout server.key -out server.csr

Once you have the csr generated you need to submit it to a certificate authority (i.e. digicert.com, godaddy.com, versign.com, thawt.com).  After the cert has been issued to you the apache ssl conf file will need to be updated.  The location and name of this file can vary from server to server -- Especially if you use a special interface to manage your server configuration.

Apache configuration files are typically found in /etc/httpd. The main configuration file is usually named httpd.conf. In some cases the <VirtualHost> blocks will be at the bottom of this httpd.conf file. Sometimes you will find the <VirtualHost> blocks in their own files under a directory like /etc/httpd/vhosts.d/ or /etc/httpd/sites/ or in a file called ssl.conf.

If you need your site to be accessible through both secure (https) and non-secure (http) connections, you will need a virtual host for each type of connection.

An Example would be:

<VirtualHost 192.168.0.1:443>
DocumentRoot /var/www/html2
ServerName www.yourdomain.com
SSLEngine on
SSLCertificateFile /path/to/your_domain_name.crt
SSLCertificateKeyFile /path/to/your_private.key
SSLCertificateChainFile /path/to/DigiCertCA.crt
</VirtualHost>

Adjust the file names to match your certificate files:

    * SSLCertificateFile should be your DigiCert certificate file (eg. your_domain_name.crt).
    * SSLCertificateKeyFile should be the key file generated when you created the CSR.
    * SSLCertificateChainFile should be the DigiCert intermediate certificate file (DigiCertCA.crt)

      If the SSLCertificateChainFile directive does not work, try using the SSLCACertificateFile directive instead.
0
 

Author Closing Comment

by:AXISHK
ID: 35063974
Tks
0

Featured Post

Migrating Your Company's PCs

To keep pace with competitors, businesses must keep employees productive, and that means providing them with the latest technology. This document provides the tips and tricks you need to help you migrate an outdated PC fleet to new desktops, laptops, and tablets.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

After running Ubuntu some time, you will be asked to download updates for fixing bugs and security updates. All the packages you download replace the previous ones, except for the kernel, also called "linux-image". This is due to the fact that w…
The purpose of this article is to demonstrate how we can upgrade Python from version 2.7.6 to Python 2.7.10 on the Linux Mint operating system. I am using an Oracle Virtual Box where I have installed Linux Mint operating system version 17.2. Once yo…
Established in 1997, Technology Architects has become one of the most reputable technology solutions companies in the country. TA have been providing businesses with cost effective state-of-the-art solutions and unparalleled service that is designed…
A short tutorial showing how to set up an email signature in Outlook on the Web (previously known as OWA). For free email signatures designs, visit https://www.mail-signatures.com/articles/signature-templates/?sts=6651 If you want to manage em…

808 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question