Alter.Org.UA  
 << Back Home RU ru   Donate Donate www/www1/www2

Apache + SSL certificate

Self-signed certificate. Simple, but I often forget how to do it :)

 openssl req -x509 -nodes -days 365 -newkey rsa:2048 -keyout my.site.name.key -out my.site.name.crt

Answer some questions. The main is:

Common Name: my.site.name

You will get .key and .crt in current directory. Place them to some directory that you defined for sertificate storage. Then update <VirtualHost MY.SITE.IP.ADDRESS:443> section with paths to them:

<VirtualHost MY.SITE.IP.ADDRESS:443>
SSLEngine on
SSLCipherSuite ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+eNULL
SSLCertificateFile "/usr/local/etc/apache22/ssl/my.site.name.crt"
SSLCertificateKeyFile "/usr/local/etc/apache22/ssl/my.site.name.key"
</VirtualHost>

Note: each SSL-enabled site must have unique IP address.


See also:

Mail to alterX@alter.org.ua (remove X)  
<< Back designed by Alter aka Alexander A. Telyatnikov powered by Apache+PHP under FBSD © 2002-2017