Hi Craig, hi guys,
I knew that one day I will have to face SSL installation.
I have one old GoDaddy standard certificate which I thought I use to practice. It was assigned to a different domain name but it was pretty easy to rekey it. At first, I had to get CRS (Certificate Signing Request).
To generate CRS & privet key I logged in via SSH with my sudo account and run from my home directory the following command:
openssl req -newkey rsa:2048 -nodes -keyout mydomainename.uk.key -out mydomainname.uk.csr
At this point, I was prompted for several lines to info that will be included in my certf.
To print the contents of the CSR use the following command:
cat yourdomainename.uk.csr
This all was easy.
Then I rekey my old GoDaddy certificate which was validated. I downloaded it and stored my intermediate certificate gd_bundle.ctr & primary certificate xzy.ctr in the home directory where my key files are stored. This also was pretty easy.
Finally, I tried to change some entries in /etc/apache2/sites-available/000-default.conf
running the following command
sudo nano /etc/apache2/sites-available/000-default.conf
I changed <VirtualHost *:80>
so it is <VirtualHost *:443>
and added the following
ServerName mydomainname.uk
SSLEngine on
SSLCertificateFile /home/pawel/mydomainname.uk.crt
SSLCertificateKeyFile /home/pawel/mydomainname.uk.key
SSLCACertificateFile /home/pawel/gd_bundle-g2-g1.crt
Closed & saved it and enabled the Apache SSL module running the following command:
sudo a2enmod ssl
Finally, tried to restart Apache but… ZONK!
The following error message was shown.
I followed these 2 articles:
How To Install an SSL Certificate from a Commercial Certificate Authority
Just to be clear I modified 000-default.conf
file in this directory etc/apache2/sites-available
I didn’t touch apache.conf
file from /etc/apache2/
directory as GoDaddy instruct.
Manually install an SSL certificate on my Apache server (Ubuntu)
My environment: M2.3.1, DigitalOcean, Ubuntu 16.04, Can’t tell what Apache version I’m using. I tied this command httpd -v
but it throws an error at me that the command doesn’t exist.
I know that it requires time to digest the issue but if you Craig or anyone can help it would be great.
Thank you.
Regards,
Pawel