Installing SSL Certificate with Chain Intermediary CA File

Some of the cheaper or newer SSL suppliers will require this to work properly (otherwise you may be prompted that the cert is invalid when it's not the case but it will certainly scare off your users!).

In the Apache vhost conf for the domain here is what you add:

SSLCACertificateFile /path/to/your/cafile.pem

Here is a full example of an SSL Vhost config in Apache using a CA Certificate file

<VirtualHost *:443>
DocumentRoot /www/vhosts/domain.com/httpdocs
ServerName domain.com
ServerAlias www.domain.com
LogFormat "%h %l %u %t \"%r\" %>s %b \"%{Referer}i\" \"%{User-agent}i\"" combined
CustomLog /www/vhosts/domain.com/stats/access_log combined
ErrorLog /www/vhosts/domain.com/stats/error_log
#begin enable SSL
SSLEngine on
SSLVerifyClient none
SSLCertificateFile /www/ssl-certs/www.domain.com-ssl-cert.crt
SSLCertificateKeyFile /www/ssl-certs/www.domain.com-ssl-private.key
SSLCACertificateFile /www/ssl-certs/www.domain.com-ssl-ca.crt
#begin stop SSL
</VirtualHost>


Tags:

installing, ssl, certificate, intermediary, ca, filesome, cheaper, newer, suppliers, prompted, cert, invalid, users, apache, vhost, conf, domain, sslcacertificatefile, cafile, pem, config, virtualhost, documentroot, www, vhosts, httpdocs, servername, serveralias, logformat, quot, referer, user, combined, customlog, stats, access_log, errorlog, error_log, enable, sslengine, sslverifyclient, sslcertificatefile, certs, crt, sslcertificatekeyfile,

Latest Articles

  • Cisco Unified Communication Manager (CUCM) - How To Add Phones
  • pptp / pptpd not working in DD-WRT iptables / router
  • systemd-journald high memory usage solution
  • How to Install FreePBX in Linux Debian Ubuntu Mint Guide
  • How To Install Cisco's CUCM (Cisco Unified Communication Manager) 12 Guide
  • Linux Ubuntu Redhat How To Extract Images from PDF
  • Linux and Windows Dual Boot Issue NIC Won't work After Booting Windows
  • Cisco CME How To Enable ACD hunt groups
  • How to install gns3 on Linux Ubuntu Mint
  • How to convert audio for Asterisk .wav format
  • Using Cisco CME Router with Asterisk as a dial-peer
  • Cisco CME How To Configure SIP Trunk VOIP
  • Virtualbox host Only Network Error Failed to save host network interface parameter - Cannot change gateway IP of host only network
  • Cisco CME and C7200 Router Testing and Learning Environment on Ubuntu 20+ Setup Tutorial Guide
  • Abusive IP ranges blacklist
  • How to Install Any OS on a Physical Drive from Windows Using VMware Workstation (Linux, Windows, BSD)
  • CDN Cloudflare how to set and preserve the real IP of the client without modifying application code on Apache
  • CentOS 7 fix Could not retrieve mirrorlist http://mirrorlist.centos.org/?release=7&arch=x86_64&repo=os&infra=container error was 14: curl#6 -
  • Ubuntu Debian How To Install Recommended Packages Automatically
  • How to set Linux Ubuntu Redhat Debian Command Line http https socks proxy for yum apt
    • Copyright © realtechtalk.com 2024