SSL Certificates Support - Installation Instructions- Apache Server with modssl - VeriSign UK Ltd.
VeriSign, Inc.® United Kingdom Home | Worldwide Sites | Site Map
Products & Services Solutions Support About VeriSign Existing Customers
You Are Here: United Kingdom Home > Support > SSL Certificates Support > Installation Instructions- Apache Server with modssl

SSL Certificates Support
SSL Support Information
Generate a Certificate Signing Request (CSR)
Enrolment
Installation Instructions
Backup a Certificate
Move a Certificate

Installation Instructions- Apache Server with modssl

This document provides instructions for installing SSL Certificates. If you are unable to use these instructions for your server, VeriSign recommends that you contact either the vendor of your software or an organisation that supports Apache mod_SSL.

Step 1: Install CA Certificate

Secure Site

If you are installing a Secure Site Certificate, you need to first install the Secure Site Intermediate CA Certficate.

Secure Site Pro

If you are installing a Secure Site Pro Certificate, you need to first install the Secure Site Pro Intermediate CA Certficate .

Note to ISP Center Customers: Certificates enrolled through VeriSign's ISP Center do not need the Secure Site Intermediate CA Certificate installed at this time.

  1. Copy the intermediate certificate into text file and name it "intermediate.crt". This file can be placed in the same directory as your SSL Certificate. For example: /usr/local/ssl/crt

Step 2: Install the SSL Certificate

VeriSign will email you your certificate. If the certificate is an attachment (Cert.cer), you can use the file. If the certificate is in the body of the email, copy and paste it into a text file (such as OriginalCert.txt) using Vi or Notepad. Do not use Microsoft Word or other word processing programs that may add characters. Confirm that there are no extra lines or spaces in the file.

  1. To follow the naming convention for Apache, rename the certificate filename with the .crt extension. For example: cert.crt
  2. Copy your Certificate into the directory that you will be using to hold your certificates. In For example: /usr/local/ssl/crt/.

Step 3: Configure the Server

  1. In order to use the key pair, the httpd.conf file will need to be updated.
  2. In the Virtual Host settings for your site, in the httpd.conf file, you will need to add the following SSL directives: 
     
    SSLCertificateFile /usr/local/ssl/crt/public.crt  
    SSLCertificateKeyFile /usr/local/ssl/private/private.key  
    SSLCertificateChainFile /usr/local/ssl/crt/intermediate.crt

The first directive tells Apache how to find the Certificate File, the second one where the private key is located, and the third line the location of the intermediate certificate.

If you are using a different location and certificate file names than the example above (which most likely you are) you will need to change the path and filename to reflect your server.

  1. Save your httpd.conf file and restart Apache. You can most likely do so by using the apachectl script:  
     
    apachectl stop  
    apachectl startssl
  2. You should now be set to start using your VeriSign certificate with your Apache mod_SSL Server.

Apache-SSL

For more information, see the Apache mod_SSL Support website.
Contact Us
Contact Support >>
Contact VeriSign Legal Notices Privacy Repository © 2003 - 2008 VeriSign UK Limited. All rights reserved.
10/8/08 9:58 PM