Managed PKI for SSL Support - Installation Instructions for Apache mod_ssl - VeriSign UK Ltd.
VeriSign, Inc.® United Kingdom Home | Worldwide Sites | Site Map
Products & Services Solutions Support About VeriSign Existing Customers
You Are Here: United Kingdom Home > Support > Managed PKI for SSL Support > Installation Instructions for Apache mod_ssl

Managed PKI for SSL Support
MPKI for SSL Information
Generate a CSR
Certificate Enrolment
Install a Certificate

Installation Instructions for Apache mod_ssl

This document provides instructions for installing SSL Certificates. If you are unable to use these instructions for your server, VeriSign recommends that you contact your software vendor or an organisation that supports Apache mod_ssl.

Premium and Intranet Edition SSL Certificates

If you are installing a Managed PKI for SSL Premium Edition or a Managed PKI for SSL Intranet Certificate, you need to first install the intermediate CA (‘intermediate.crt’) provided by your administrator. Place the text file in the same directory as your SSL Certificate. For example: /usr/local/ssl/crt

Managed PKI for SSL Administrators: how to find your Intermediate CA.

Step 1: Install an SSL Certificate

When your administrator has approved your request you will receive an email from VeriSign that contains your certificate. If the certificate is an attachment (Cert.cer), you can use the file. If the certificate is in the body of the email, copy and paste it into a text file (such as OriginalCert.txt) using Vi or Notepad. Do not use Microsoft Word or other word processing programs that may add characters. Confirm that there are no extra lines or spaces in the file.

  1. To follow the naming convention for Apache, rename the certificate filename with the .crt extension. For example: cert.crt
  2. Copy your certificate into the directory you will be using to hold your certificates. For example: /usr/local/ssl/crt/

Step 2: Configure the Server

In order to use the key pair, the httpd.conf file needs to be updated.

  1. In the Virtual Host settings, in the httpd.conf file, add the following SSL directives, changing path and filenames for your server. 

SSLCertificateFile /usr/local/ssl/crt/public.crt  

Location of the certificate file.

SSLCertificateKeyFile /usr/local/ssl/private/private.key

Location of the private key.

SSLCACertificateFile /usr/local/ssl/crt/intermediate.crt

Location of the intermediate certificate.

  1. Save your httpd.conf file and restart Apache. Commonly used apachectl script:   
    apachectl stop   
    apachectl startssl
  2. You should now be able to start using your VeriSign certificate with your Apache mod_SSL Server.

Support

For more information, go to Apache support.
Contact Us
Contact Support >>
Contact VeriSign Legal Notices Privacy Repository © 2003 - 2008 VeriSign UK Limited. All rights reserved.
6/29/08 10:00 PM