Solved

CentOS:  Install SSL certificate

Posted on 2011-03-10
14
1,902 Views
Last Modified: 2012-05-11
Hi All,

Very new to using CentOS and SSH.  But slowly getting the hang of it.


I've setup a website and want to add an SSL certificate.

Can anyone walk me through the process.
0
Comment
Question by:detox1978
  • 9
  • 5
14 Comments
 
LVL 31

Expert Comment

by:farzanj
ID: 35100615
Do you need it for Apache, LDAP, or SSH keys?
0
 
LVL 2

Author Comment

by:detox1978
ID: 35100640
Apache
0
 
LVL 2

Author Comment

by:detox1978
ID: 35100755
I have a PFX file with the public and private key
0
Master Your Team's Linux and Cloud Stack!

The average business loses $13.5M per year to ineffective training (per 1,000 employees). Keep ahead of the competition and combine in-person quality with online cost and flexibility by training with Linux Academy.

 
LVL 2

Author Comment

by:detox1978
ID: 35100905
I have openssl on the server.
0
 
LVL 2

Author Comment

by:detox1978
ID: 35101135
I found this link, but dont know where to copy things too;

http://www.petefreitag.com/item/16.cfm
0
 
LVL 31

Expert Comment

by:farzanj
ID: 35101214
0
 
LVL 2

Author Comment

by:detox1978
ID: 35101414
I followed the steps on that link and got the following error;

#openssl ca -in apachekey.csr -out apachecert.pem

Using configuration from /etc/pki/tls/openssl.cnf
Error opening CA private key ../../CA/private/cakey.pem
31033:error:02001002:system library:fopen:No such file or directory:bss_file.c:352:fopen('../../CA/private/cakey.pem','r')
31033:error:20074002:BIO routines:FILE_CTRL:system lib:bss_file.c:354:
unable to load CA private key
0
 
LVL 31

Expert Comment

by:farzanj
ID: 35101524
Please follow this guide step by step

http://www.cyberciti.biz/faq/rhel-apache-httpd-mod-ssl-tutorial/

If you still have problem, let me know.
0
 
LVL 2

Author Comment

by:detox1978
ID: 35101535
Thats the same link?
0
 
LVL 31

Expert Comment

by:farzanj
ID: 35103080
I am sorry, got really busy and could not help you.
If you found the solution, please post it here.  That would help the community too.

Thanks
0
 
LVL 2

Accepted Solution

by:
detox1978 earned 0 total points
ID: 35103118
Here's my notes;

You just need to update the PFX password.


Create PFX
copy mydomain.com.pfx to /etc/httpd/conf/ssl/pfx

connect to root via SSH

# = type

#openssl
#pkcs12 -in /etc/httpd/conf/ssl/pfx/mydomain.com.pfx -passin pass:PFX-Password -nokeys -out

/etc/httpd/conf/ssl/crt/mydomain.com.crt
#pkcs12 -in /etc/httpd/conf/ssl/pfx/mydomain.com.pfx -passin pass:PFX-Password -nocerts -out

/etc/httpd/conf/ssl/key/mydomain.com.key -passout pass:PFX-Password


insert the following lines to the VirtualHost in httpd.conf using vi (vi /etc/httpd/conf/httpd.conf)




SSLEngine On
SSLCertificateFile /etc/httpd/conf/ssl/crt/mydomain.com.crt
SSLCertificateKeyFile /etc/httpd/conf/ssl/key/mydomain.com.key


Then restart the webserver

#/etc/init.d/httpd restart



0
 
LVL 31

Expert Comment

by:farzanj
ID: 35103135
Thanks.

Before closing, it is better if you post your solution, and accept it.
0
 
LVL 2

Author Comment

by:detox1978
ID: 35133407
I raised a delete request, so will have it removed and accept my answer.

Hopefully it will help someone.  
0
 
LVL 2

Author Closing Comment

by:detox1978
ID: 35171011
answer above
0

Featured Post

Simplifying Server Workload Migrations

This use case outlines the migration challenges that organizations face and how the Acronis AnyData Engine supports physical-to-physical (P2P), physical-to-virtual (P2V), virtual to physical (V2P), and cross-virtual (V2V) migration scenarios to address these challenges.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
open source backup solution 1 36
Using sort and uniq to pare down large syslog 6 50
IP 10.0.1.2 / 255.0.0.0 61 56
Apache module 5 42
This article will explain how to establish a SSH connection to Ubuntu through the firewall and using a different port other then 22. I have set up a Ubuntu virtual machine in Virtualbox and I am running a Windows 7 workstation. From the Ubuntu vi…
The purpose of this article is to show how we can create Linux Mint virtual machine using Oracle Virtual Box. To install Linux Mint we have to download the ISO file from its website i.e. http://www.linuxmint.com. Once you open the link you will see …
Connecting to an Amazon Linux EC2 Instance from Windows Using PuTTY.
This demo shows you how to set up the containerized NetScaler CPX with NetScaler Management and Analytics System in a non-routable Mesos/Marathon environment for use with Micro-Services applications.

792 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question