Coremanaged SSL

From Cheatsheet
Revision as of 23:11, 22 May 2010 by Admin (talk | contribs)
Jump to navigation Jump to search

Coremanaged SSL

To install a ssl certificate on a coremanaged box you will need to do the following.
First you will need to create the RSA key using the following line.
(change the domain to what you are working on in all instances of verabill.com or labaik.verabill.com.)

CSR generation 

openssl genrsa -out labaik.verabill.com.key 2048
chmod 400 labaik.verabill.com.key


Add the ns record 

labaik  14400   IN      A       69.167.155.113

This one is for a sub domain but add something of the same equivalent 

cd /var/named/
vim verabill.com.db
rndc reload verabill.com
rndc reload verabill.com

Add the Vhost entry Usually located here. 

vim /etc/httpd/conf.d/ssl_vhosts.conf

Then add the following and modify it to have the paths and ip that you will be using for your new ssl domain. 

<VirtualHost 69.167.155.113:443>

        ServerName labaik.verabill.com
        DocumentRoot /usr/share/phpmyadmin
        UseCanonicalName Off

        SSLEngine on
        SSLCertificateFile /etc/pki/tls/certs/labaik.verabill.com.crt
        SSLCertificateKeyFile /etc/pki/tls/private/labaik.verabill.com.key
        SSLCACertificateFile /etc/pki/tls/certs/labaik.verabill.com.cabundle
        SetEnvIf User-Agent ".*MSIE.*" nokeepalive ssl-unclean-shutdown

</VirtualHost>
Retrieved from "https://wiki.shooltz.net/w/index.php?title=Coremanaged_SSL&oldid=480"