Search Support
contact us

Let Us Make it Easy for You. Call 1-877-898-3290 for MyTime Support™. Learn More

Installing SSL Certificate Topics

Article Rating: 2 / 5 Votes: 16

Installation of an SSL Certificate on Ensim Webappliance 3.1.x

Step one: Loading the Site Certificate

You must first download your domain certificate named "domainname.com".crt where "domainname.com" is your domain (so for example, if your domain is named mysite.com, the file will be named mysite.com.crt). When viewed in a text editor, your certificate will look something like:

-----BEGIN CERTIFICATE-----
MIAGCSqGSIb3DQEHAqCAMIACAQExADALBgkqhkiG9w0BBwGgg

(.......)
K99c42ku3QrlX2+KeDi+xBG2cEIsdSiXeQS/16S36ITclu4AADEAAAAA
-----END CERTIFICATE-----

 

  1. Copy your Certificate into the directory that you will be using to hold your certificates. In this example we will use /etc/ssl/crt/. Both the public and private key files will already be in this directory. The private key used in the example will be labeled private.key and the public key will be "domainname.com".crt.

    We recommend that you make the directory that contains the private key file only readable by root.
  2. Login to the Administrator console and select the site for which the certificate was requested.
  3. Select Services, then Actions next to Apache Web Server and then SSL Settings. There should already be a 'Self Signed' certificate saved.

  4. Select 'Import' and copy the text from the "domainname.com".crt file into the box

  5. Select 'Save'. The status should now change to Successful.

  6. Logout of the application. Do not select 'Delete' as this will delete the installed certificate.

 

Step two: Install the Intermediate Certificate files

You will need to install the Intermediate CA certificate files in order for browsers to trust your Certification. Along with your domain certificate file, two other certificates files also need to be installed (or three files if you are installing Extended Validation certification). For your convenience, these are bundled together in a text file named "Apache_Plesk_Install.txt". Even though the file name refers to Apache Plesk, it will still work for your server.

In the Virtual Host settings for your site, in the virtual site file, you will need to add the SSL directives. This may be achieved by:

  1. Copy the Apache_Plesk_Install.txt file to the same directory as the certificate and rename it ca.txt.
  2. Add the following line to the virtual host file under the virtual host domain for your site (assuming /etc/ssl/crt is the directory mentioned in 1.), if the line already exists amend it to read the following:

    SSLCertificateChainFile /etc/ssl/crt/ca.txt


    Note
    : If you are using a different location and certificate file names you will need to change the path and filename to reflect this.

    The SSL section of the updated virtual host file should now read similar to this example (depending on your naming and directories used):

    SSLCertificateFile /etc/ssl/crt/
    "domainname.com".crt
    SSLCertificateKeyFile /etc/ssl/crt/private.key

    SSLCertificateChainFile /etc/ssl/crt/ca.txt

  3. Save your virtual host file and restart Apache.

You are now all set to start using your Network Solutions certificate with your Apache Ensim configuration.