httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Brian Munroe" <brian.e.mun...@gmail.com>
Subject Re: [users@httpd] configuring SSL
Date Mon, 27 Aug 2007 13:57:53 GMT
On 8/26/07, Galaxy Virus <galaxy_virus46@yahoo.com> wrote:
> Dear all,
>
>     To get private key and certificate, I did,
>
> $ openssl req -new -x509 -newkey rsa:2048 -out host_req.pem -keyout
> host_key.pem
>
> And I sent certificate (host_req.pem) to CA in order to get real certificate
> and they sent me back the singed certificate.
>
> From there, I dont know how to configure this certificate and key in apache.

Assuming you are using a stock Apache 2.0.

in $APACHE_HOME/conf, there should be a httpd.conf file, Open it and
make sure there is the following line somewhere near the top:

LoadModule ssl_module modules/mod_ssl.so

In $APACHE_HOME/conf, there should also be a ssl.conf file.  Open it
and find the two lines:

       SSLCertificateFile    /path/to/this/server.crt
       SSLCertificateKeyFile /path/to/this/server.key

Change the SSLCertificateFile entry to point to signed certificate you
got from the CA.  I like to put a *.crt on the end of these files.

Change the SSLCertificateKeyFile entry to point to your signing key,
which in you example above is host_key.perm.

Now start apache with SSL by issuing:

$ apachectl startssl

That is the very basics - I assumed you had the default install, so if
your configuration varies much, this may not work for you.

-- brian

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org


Mime
View raw message