SSL certificates

From Oxxus Wiki

Jump to: navigation, search

Certain contents exchange over web , like purchasing using credit card details, or providing contents like email login details, that are not for public use , are handled via encrypted sessions.
It's supported via SSL engines implemented within various applications or services like web servers, email servers etc.


Contents

Shared hosting

SSL certificates for shared hosting requires dedicated ip address to which it'll be binded within configuration.
Services installation is done through Ensim hosting account administration panel, and has to be performed by hosting provider as it requires web services restarting.

VPS/Dedicated server hosting

The SSL services that Oxxus.Net hosting provides are for use with Apache's mod_ssl module but can be easily imported into Tomcat's keystore and used for java related pages with https encryption access feature. The Apache module mod_ssl can be installed via package maintainers like yum or apt-get with command below executed

yum install mod_ssl, or apt-get install mod_ssl


SSL certificate request creation

SSL certificate providers requires 2KB requests.
From hosting where certificate is going to be installed certificate request can be created as follows, for Linux OS environment.
Login to hosting shell via ssh services with as root.

Step 1: Generate a Private Key
openssl genrsa -des3 -out server.key 2048

Step 2: Generate a CSR (Certificate Signing Request)
openssl req -new -key server.key -out server.csr

Step 3: Remove Passphrase from Key
cp server.key server.key.org
openssl rsa -in server.key.org -out server.key

Generated certificate request, server.csr, is now ready to be provided to certificate provider. Within request generation process an email address, to which certificate will be sent, is stated usually in form webmaster@DOMAIN_NAME so inbox has to be reachable by owner or administrator of hosting account.

SSL certificate installation

Once certificate is received, edit ssl.conf file, placed at /etc/httpd/conf.d/ folder and set following directives:

SSLCertificateFile /PATH_TO_FOLDER_FOR_SSL/CERTIFICATE.crt

SSLCertificateKeyFile /PATH_TO_FOLDER_FOR_SSL/KEYFILE.key

Restart Apache services and web site is now accessible via HTTS secure sessions.

Retrieved from "http://oxxus.net/wiki/SSL_certificates"
Contact About Us Support Network Servers Java Hosting Oxxus.net Order Now! Dedicated Servers VPS Hosting Tomcat Hosting Java Hosting Money Back Guarantee Privacy Policy Oxxus.net Terms of Service Contact About Us Servers Networks Support Domain Names SSL Certificates Java Wiki Tutorials E-learning Platforms