WoSign - GeoTrust, Thawte (VeriSign) 授权中国合作伙伴！ SSL证书, 代码签名证书, 文件签名证书, 客户端数字证书, 各种信息安全解决方案

首页

产品简介

产品价格

服务器SSL证书产品

SGC超真SSL

超真SSL

超快SSL

代码签名证书产品

微软代码签名证书

TC发布者证书

TC内容证书

客户端数字证书产品

个人数字证书

单位数字证书

USB Key 加密盘

PKI(CA)托管产品

超管CA-企业版

超管CA-RA版

各类产品分网站

TrustCenter产品

微软代码签名证书

移动代码签名证书

超真SSL证书

SGC超真SSL证书

超快SSL证书

EV SSL证书

客户端证书

首页

技术支持

SSL证书安装指南 - Apache-SSL / Apache ModSSL

1. 保存证书文件 Save the certificate file

当您收到SSL证书后，请使用记事本保存为：www.mydomain.com.crt。如下图所示，一定要包含“----- BEGIN CERTIFICATE-----”和“-----END CERTIFICATE-----”：
Copy your certificate into a text editor such as notepad/vi including the header and footer and save the certificate file as www.mydomain.com.crt. You should then have a text file that looks like this:

2. 安装SSL证书 Install the certificate

a. Copy the certificate to the Apache directory in which you plan to store your certificates (example: /etc/httpd/conf/ssl.key/ or /etc/httpd/conf/ssl.crt/).

b. Open the Apache httpd.conf file in a text editor (notepad/vi). Locate the SSL VirtualHost associated with your certificate. Verify that you have the following 2 directives within this virtual host. Please add them if they are not present:

SSLCertificateKeyFile //where/the/key/is/located/www.mydomain.com.key SSLCertificateFile /where/the/certificate/is/located/www.mydomain.com.crt

Note that some instances of Apache contain both a httpd.conf and ssl.conf file. Please enter or amend the httpd.conf or the ssl.conf with the above directives. Do not enter the information in both as there will be a conflict and Apache will not start.

c. Save the changes and exit the editor.

d. Stop and start the Apache daemon which will register the changes that have been made in the config file. You can use the following commands:

/usr/sbin/apachectl stop /usr/sbin/apachectl startssl or: /usr/sbin/httpd -k stop /usr/sbin/httpd -DSSL

3. Setup the server

Make sure you assign port 443 and a unique ip address (i.e <VirtualHost 192.168.20.248:443>)to the virtual host. Apache does not support name based virtual hosts therefore host headers must not be specified in the VirtualHost directive.

Note If the server is behind a firewall please make sure port 443 has been enabled on the firewall.

Install the SGC CA Intermediate Certificate (step 4 is only required if you are installing a SGC SuperCert)

4. Install the SGC CA Intermediate Certificate

a. Copy your Intermediate CA Certificate into a text editor such as notepad/vi including the header and footer. Save the certificate to the same location that the issued certificate is stored.

b. Please add the following directive in your virtual host:

SSLCACertificateFile /where/the/certificate/is/located/intermediate.crt

c. Save the changes made to your httpd.conf file.

d. You will also need to restart the entire server and not just the daemon, in order for the installation to take an effect.

Test your certificate by using a browser to connect to your server. Use the https protocol directive (e.g. https://your server/) to indicate you wish to use secure HTTP. The padlock icon on your browser will be displayed in the locked position if your certificates are installed correctly and the server is properly configured for SSL.