Installed SSL certificate

September 16, 2008 – 10:24

Applied for and installed SSL certificate on CentOS Moodle server:

1. check if Apache runs mod_ssl and setup httpd.conf to listen to port 443

yum install mod_ssl

edit ssl.conf, add “NameVirtualHost *:443″ to allow for name based virtual hosts.

edit the DocumentRoot in the VirtualHost section

2. Create CSR (Certificate Signing Request):

Generate A Private Key

openssl genrsa -des3 -out www_sslcertificaten_nl.key 1024 (pw = protocol)

Remove password from private key

Remove the password from the private key, otherwise Apache needs a pw when it starts up

cp www_sslcertificaten_nl.key www_sslcertificaten_nl.key.secure
openssl rsa -in www_sslcertificaten_nl.key.secure -out www_sslcertificaten_nl.key

CSR

openssl req -new -key server.key -out server.csr

3. Apply for the certificate at sslcertificaten.nl

Applied for Verisign certificate so have to wait a few days for verification. No shit, certificate arrived after 1 day already. Great service.

4. Install the certificate

set directives in ssl.conf. Don’t forget to include any Directory or VirtualHost settings from the normal httpd.conf!!

set logs to new virtual host name:

ErrorLog logs/ssl_error_log -> ErrorLog logs/vhost_ssl_error_log
TransferLog logs/ssl_access_log -> CustomLog logs/vhost_ssl_access_log combined

NOTE: don’t forget to add combined to the SSL access log.

Sorry, comments for this entry are closed at this time.

BrnDmp is proudly powered by WordPress Entries (RSS) and Comments (RSS). Designed by Bob SEO Powered by Platinum SEO from Techblissonline