{"id":345,"date":"2016-01-19T15:01:38","date_gmt":"2016-01-19T15:01:38","guid":{"rendered":"http:\/\/www.pkipartner.support\/?page_id=345"},"modified":"2016-03-29T09:27:48","modified_gmt":"2016-03-29T09:27:48","slug":"install-installing-your-certificate-on-apache-with-mod_ssl","status":"publish","type":"page","link":"https:\/\/pkipartner.com\/support\/install-installing-your-certificate-on-apache-with-mod_ssl\/","title":{"rendered":"Install – Installing your Certificate on Apache with mod_ssl"},"content":{"rendered":"

Installing your Certificate on Apache with mod_ssl<\/h1>\n

Extract all of the contents of the ZIP file that was sent to you and copy\/move them to your server. The extracted contents will typically be named: yourDomainName.crt<\/em><\/strong> and yourDomainName.ca-bundle<\/em><\/strong><\/p>\n

Note:<\/strong> If you received several .crt files in your ZIP file please use the \u201cHow do I do my own ca-bundle\u201d article to make yourDomainName.ca-bundle<\/em><\/strong><\/p>\n

    \n
  1. Move all of the certificate related files to their appropriate directories.\n

    A typical setup: <\/strong><\/p>\n

      \n
    1. Move the Private Key that was generated earlier to the key<\/strong> directory, which is typically found in \/etc\/ssl\/<\/strong>. This must be a directory which only Apache can access.<\/li>\n
    2. Move the crt<\/em><\/strong> and yourDomainName.ca-bundle<\/em><\/strong> to the ssl.crt<\/strong> directory, which is typically found in the \/etc\/ssl\/<\/strong> directory.<\/li>\n<\/ol>\n<\/li>\n<\/ol>\n
        \n
      1. Edit the file that contains the SSL configuration with your favorite text editor.
        \nExamples: <\/strong>nano, vi, pico, emacs, mousepad, notepad, notepad++, etc.<\/li>\n<\/ol>\n

        Note:<\/strong> The location of this file may vary from each distribution. It will be referenced in the Apache global configuration file. Look for the lines starting with include<\/strong>.<\/p>\n

        Apache Configuration File:<\/u><\/strong><\/p>\n

          \n
        1. Fedora\/CentOS\/RHEL:<\/strong> \/etc\/httpd\/conf\/httpd.conf<\/em><\/li>\n
        2. Debian and Debian based: <\/strong>\/etc\/apache2\/apache2.conf<\/em><\/li>\n<\/ol>\n

          SSL Configuration File:<\/u><\/strong><\/p>\n

          Some possible names:<\/strong><\/p>\n

            \n
          1. httpd-ssl.conf<\/li>\n
          2. conf<\/li>\n
          3. In the \/etc\/apache2\/sites-enabled\/<\/strong><\/li>\n<\/ol>\n

            Note:<\/strong> If needed be please consult your distribuiton’s documentation on Apache and SSL or navigate to the Apache Foundation’s Apache2<\/a> Documentation.<\/p>\n

              \n
            1. In the VirtualHost<\/strong> section of the file please add these directives if they do not exist. It is best to comment out what is already there and add the below entries.<\/li>\n
            2. SSLEngine<\/strong> on SSLCertificateKeyFile<\/strong> \/etc\/ssl\/ssl.key\/server.key<\/li>\n
            3. SSLCertificateFile<\/strong> \/etc\/ssl\/ssl.crt\/yourDomainName.crt<\/li>\n
            4. SSLCertificateChainFile<\/strong> \/etc\/ssl\/ssl.crt\/yourDomainName.ca-bundle ***<\/li>\n<\/ol>\n

              *** Apache 1.x<\/u><\/strong>:<\/strong>
              \nPlease use SSLCACertificateFile<\/strong> instead of SSLCertificateChainFile<\/strong>.<\/p>\n

              Note: <\/strong>The above paths in the directives are only used as examples. Your server may have a different path and may need to be modified to suit your needs.<\/p>\n

                \n
              1. Save your config<\/strong> file and restart the Apache servi<\/li>\n<\/ol>\n","protected":false},"excerpt":{"rendered":"

                Installing your Certificate on Apache with mod_ssl Extract all of the contents of the ZIP file that was sent to you and copy\/move them to your server. The extracted contents will typically be named: yourDomainName.crt and yourDomainName.ca-bundle Note: If you received several .crt files in your ZIP file please use\u2026<\/p>\n

                Continue reading<\/span><\/i><\/a> <\/p>\n","protected":false},"author":1,"featured_media":0,"parent":0,"menu_order":0,"comment_status":"closed","ping_status":"closed","template":"","meta":{"footnotes":""},"_links":{"self":[{"href":"https:\/\/pkipartner.com\/support\/wp-json\/wp\/v2\/pages\/345"}],"collection":[{"href":"https:\/\/pkipartner.com\/support\/wp-json\/wp\/v2\/pages"}],"about":[{"href":"https:\/\/pkipartner.com\/support\/wp-json\/wp\/v2\/types\/page"}],"author":[{"embeddable":true,"href":"https:\/\/pkipartner.com\/support\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/pkipartner.com\/support\/wp-json\/wp\/v2\/comments?post=345"}],"version-history":[{"count":3,"href":"https:\/\/pkipartner.com\/support\/wp-json\/wp\/v2\/pages\/345\/revisions"}],"predecessor-version":[{"id":760,"href":"https:\/\/pkipartner.com\/support\/wp-json\/wp\/v2\/pages\/345\/revisions\/760"}],"wp:attachment":[{"href":"https:\/\/pkipartner.com\/support\/wp-json\/wp\/v2\/media?parent=345"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}