Installing SSL Certificate TopicsInstallation of an EV SSL Certificate on Apache Mod_SSL / OpenSSL
Installation of an EV SSL Certificate on Apache Mod_SSL / OpenSSL
Step one: Copy your domain certificate file to a directory on your Apache server
First you will need to download your certificate files. The domain certificate will be called 'yourDOMAINNAME.crt' (for example, if your domain name is 'www.example-name.com', then the domain certificate will be named 'www.example-name.com.crt') and typically will be within a *.zip file. Alternatively, it can be downloaded individually from the "Optional Download: Individual Certificate Files" section in Account Manager.
When viewed in a text editor, your certificate will look something like this:
Copy your Certificate into the same directory as your Private Key. In this example we will use '/etc/ssl/crt/'. The private key used in the example will be labeled 'private.key' and the public key will be 'yourDOMAINNAME.crt'.
Note: It is recommended that you make the directory that contains the private key file only readable by root.
Step two: Install the Intermediate Certificates
You will need to install the Intermediate CA certificates in order for browsers to trust your SSL Certification. The Intermediate CA certificates are contained within the 'Apache_Plesk_Install.txt ' file that can be downloaded from the "Optional Download: Individual Certificate Files" section in Account Manager.
Alternatively you can create this file yourself by combining the 'UTNAddTrustServer_CA.crt' file, the 'NetworkSolutionsUTNServerCA.crt' file, and the 'NetworkSolutionsEVSSLCA.crt' file within a text document. The 'UTNAddTrustServer_CA.crt' cert content will be above the 'NetworkSolutionsUTNServerCA.crt' cert content, which will be above the 'NetworkSolutionsEVSSLCA.crt' cert content. The files can be found in the *.zip file or downloaded individually from the "Optional Download: Individual Certificate Files" section in Account Manager. There can be no whitespace in the combined file.
It is recommended that you use the .txt file already provided by Network Solutions.
In the relevant 'Virtual Host' section for your site, you will need to do the following to get this file correctly referenced:
- First, copy the 'Apache_Plesk_Install.txt' file to the same directory as the certificate and key files. As a reminder, in this example we called the directory '/etc/ssl/crt/'.
- Next, add the following line to the SSL section of the 'httpd.conf' file. Again we assume that '/etc/ssl/crt/' is the directory to where you have copied the intermediate CA file. If the line already exists amend it to read the following:
- If you are using a different location and different certificate file names, you will need to change the path and filename to reflect the path and filename that you are using. The SSL section of the updated config file should now read:
- Save your 'config' file and restart Apache.