How To Install Positive SSL Certificate For Website Hosted On VPS

0

Earlier I have posted about the CSR(Certificate Signing Request) and it’s generation process. Now I hope you already have CSR and its time to install Positive SSL on the website. The Installation of positive SSL certificate also require root access like i mentioned in the CSR generation post. So if you have shared hosting and don’t have the root access you should contact with your service provider and they will guide you to do the further procedure. This post will help only those who are using VPS/Private Server with Apache.

Follow the following Steps:-

1. Download the certificate from the Positive SSL provider, which must be two file in the zip folder.

2. Extract all of the contents of the ZIP file that was sent to you and copy/move them to your server. The extracted contents will typically be named: yourDomainName.crt and yourDomainName.ca-bundle.

3. Move all of the certificate related files to their appropriate directories.

4. A Typical Setup

  1. Move the Private Key that was generated earlier to the ssl.key directory, which is typically found in /etc/ssl/. This must be a directory which only Apache can access.
  2. Move the Private Key that was generated earlier to the ssl.key directory, which is typically found in /etc/ssl/. This must be a directory which only Apache can access.

5. Edit the file that contains the SSL configuration with your favorite text editor.

Examples: nano, vi, pico, emacs, mousepad, notepad, notepad++, etc.

Note: The location of this file may vary from each distribution. It will be referenced in the Apache global configuration file. Look for the lines starting with include.

Apache Configuration File:

      1. Fedora/CentOS/RHEL: /etc/httpd/conf/httpd.conf
      2. Debian and Debian based: /etc/apache2/apache2.conf

SSL Configuration File:

Some possible names:-

a. httpd-ssl.conf

b. ssl.conf

c. In the /etc/apache2/sites-enabled/ directory.

Note: If need be please consult your distribuiton’s documentation on Apache and SSL or navigate to the Apache Foundation’s Apache2 Documentation.

6. In the VirtualHost section of the file please add these directives if they do not exist. It is best to comment out what is already there and add the below entries.

  1. SSLEngine on
  2. SSLCertificateKeyFile /etc/ssl/ssl.key/server.key
  3. SSLCertificateFile /etc/ssl/ssl.crt/yourDomainName.crt
  4. SSLCertificateChainFile /etc/ssl/ssl.crt/yourDomainName.ca-bundle ***

Apache 1.x:

        Please use

SSLCACertificateFile

         instead of

SSLCertificateChainFile

      .

Note: The above paths in the directives are only used as examples. Your server may have a different path and may need to be modified to suit your needs.

7. Save your config file and restart the Apache service.

If you got any error while restarting the apache  like “Could not reliably determine the server’s fully qualified domain name……” just follow these following steps:-

1. Open httpd.conf

2.If you don't have httpd.conf under /etc/apache2, you should have apache2.conf

3. Add the following line anywhere…

ServerName localhost

4. Restart apache2 service

Job Done…!!

plz Join techinfoBiT on facebooktwitterGoogle+ or subscribe blog-feed

LEAVE A REPLY

Please enter your comment!
Please enter your name here