To do this SSL need to be installed for server first,
1. Install mod_ssl. You can install using yum,
-==-=-=-=-=-=-
yum install mod_ssl
-=-=-=-=--=-=
2. mkdir /etc/httpd/ssl
3. To create a self signed certificate, execute the below command,
=-=-=-=-=-=-
openssl req -x509 -nodes -days 365 -newkey rsa:2048 -keyout /etc/httpd/ssl/apache.key -out /etc/httpd/ssl/apache.crt >> Provide the details.
===-=-=-=--=
Find the usage of options below,
-x509 output a x509 structure instead of a cert. req.
-nodes don't encrypt the output key
-days number of days a certificate generated by -x509 is valid for.
-newkey rsa:bits generate a new RSA key of 'bits' in size
-keyout arg file to send the key to
-out arg output file
-noout do not output REQ
-text text form of request
-in arg input file
4. vi /etc/httpd/conf.d/ssl.conf
Under
<VirtualHost _default_:443>
ServerName <Name Of Server>:443
SSLEngine on
SSLCertificateFile /etc/httpd/ssl/apache.crt
SSLCertificateKeyFile /etc/httpd/ssl/apache.key
7. Open apache conf file and add the below in the virtual host
=--==-=-=-
SSLEngine on
SSLCertificateFile /etc/httpd/ssl/apache.crt
SSLCertificateKeyFile /etc/httpd/ssl/apache.key
=--==-=-=-=-
8. Now restart the apache service.
To install SSL for a domain, Just follow the same steps,
=-=-=-=-
openssl req -x509 -nodes -days 365 -newkey rsa:2048 -keyout /etc/httpd/ssl/<domain>.key -out /etc/httpd/ssl/<domain>.crt
=-=--=-=-=
Note: To install SSL dedicated IP is required.
Under <VirtualHost <Dedicated IP>:443>
SSLEngine on
SSLCertificateFile /etc/httpd/ssl/<domain>.crt
SSLCertificateKeyFile /etc/httpd/ssl/<domain>.key
You can verify SSL is installed from
URL: http://www.sslshopper.com/ssl-checker
1. Install mod_ssl. You can install using yum,
-==-=-=-=-=-=-
yum install mod_ssl
-=-=-=-=--=-=
2. mkdir /etc/httpd/ssl
3. To create a self signed certificate, execute the below command,
=-=-=-=-=-=-
openssl req -x509 -nodes -days 365 -newkey rsa:2048 -keyout /etc/httpd/ssl/apache.key -out /etc/httpd/ssl/apache.crt >> Provide the details.
===-=-=-=--=
Find the usage of options below,
-x509 output a x509 structure instead of a cert. req.
-nodes don't encrypt the output key
-days number of days a certificate generated by -x509 is valid for.
-newkey rsa:bits generate a new RSA key of 'bits' in size
-keyout arg file to send the key to
-out arg output file
-noout do not output REQ
-text text form of request
-in arg input file
4. vi /etc/httpd/conf.d/ssl.conf
Under
<VirtualHost _default_:443>
ServerName <Name Of Server>:443
SSLEngine on
SSLCertificateFile /etc/httpd/ssl/apache.crt
SSLCertificateKeyFile /etc/httpd/ssl/apache.key
7. Open apache conf file and add the below in the virtual host
=--==-=-=-
SSLEngine on
SSLCertificateFile /etc/httpd/ssl/apache.crt
SSLCertificateKeyFile /etc/httpd/ssl/apache.key
=--==-=-=-=-
8. Now restart the apache service.
To install SSL for a domain, Just follow the same steps,
=-=-=-=-
openssl req -x509 -nodes -days 365 -newkey rsa:2048 -keyout /etc/httpd/ssl/<domain>.key -out /etc/httpd/ssl/<domain>.crt
=-=--=-=-=
Note: To install SSL dedicated IP is required.
Under <VirtualHost <Dedicated IP>:443>
SSLEngine on
SSLCertificateFile /etc/httpd/ssl/<domain>.crt
SSLCertificateKeyFile /etc/httpd/ssl/<domain>.key
You can verify SSL is installed from
URL: http://www.sslshopper.com/ssl-checker