Coremanaged SSL: Difference between revisions

From Cheatsheet
Jump to navigation Jump to search
Newer edit →
Created page with '<center>Coremanaged SSL</center> To install a ssl certificate on a coremanaged box you will need to do the following. <pre>vim /etc/httpd/conf.d/ssl_vhosts.conf</pre> Then add t…'
 
No edit summary
Line 1: Line 1:
<center>Coremanaged SSL</center>
<center><h1>Coremanaged SSL</h1></center>


To install a ssl certificate on a coremanaged box you will need to do the following.
To install a ssl certificate on a coremanaged box you will need to do the following.<br>
First you will need to create the RSA key using the following line.<br>(change the domain to what you are working on in all instances of verabill.com or labaik.verabill.com.)
 
'''CSR generation'''
<pre>openssl genrsa -out labaik.verabill.com.key 2048
chmod 400 labaik.verabill.com.key</pre>
 
 
'''Add the ns record'''
<pre>labaik  14400  IN      A      69.167.155.113</pre>
 
This one is for a sub domain but add something of the same equivalent
 
<pre>cd /var/named/
vim verabill.com.db
rndc reload verabill.com
rndc reload verabill.com</pre>
 
'''Add the Vhost entry'''
Usually located here.
<pre>vim /etc/httpd/conf.d/ssl_vhosts.conf</pre>
<pre>vim /etc/httpd/conf.d/ssl_vhosts.conf</pre>
Then add the following and modify it to have the paths and ip that you will be using for your new  ssl domain.
Then add the following and modify it to have the paths and ip that you will be using for your new  ssl domain.


Revision as of 23:11, 22 May 2010

Coremanaged SSL

To install a ssl certificate on a coremanaged box you will need to do the following.
First you will need to create the RSA key using the following line.
(change the domain to what you are working on in all instances of verabill.com or labaik.verabill.com.)

CSR generation 

openssl genrsa -out labaik.verabill.com.key 2048
chmod 400 labaik.verabill.com.key


Add the ns record 

labaik  14400   IN      A       69.167.155.113

This one is for a sub domain but add something of the same equivalent 

cd /var/named/
vim verabill.com.db
rndc reload verabill.com
rndc reload verabill.com

Add the Vhost entry Usually located here. 

vim /etc/httpd/conf.d/ssl_vhosts.conf

Then add the following and modify it to have the paths and ip that you will be using for your new ssl domain. 

<VirtualHost 69.167.155.113:443>

        ServerName labaik.verabill.com
        DocumentRoot /usr/share/phpmyadmin
        UseCanonicalName Off

        SSLEngine on
        SSLCertificateFile /etc/pki/tls/certs/labaik.verabill.com.crt
        SSLCertificateKeyFile /etc/pki/tls/private/labaik.verabill.com.key
        SSLCACertificateFile /etc/pki/tls/certs/labaik.verabill.com.cabundle
        SetEnvIf User-Agent ".*MSIE.*" nokeepalive ssl-unclean-shutdown

</VirtualHost>
Retrieved from "https://wiki.shooltz.net/w/index.php?title=Coremanaged_SSL&oldid=480"