Technical Stuff

Start from basics

Best SSL Implementation Guide

Best SSL Implementation Guide
Best SSL Implementation Guide
3.6 (71.43%) 7 votes

Hello ! As in our last blog, we had a brief idea about SSL and types of SSL. So, Before going ahead to implementation of SSL, I would recommend to read previous blogs before going ahead with this one for better understanding of concept to practical aspects.

Now, Lets go ahead with implementation of SSL.

  1. Get the primary and intermediate certificates to any folder on the server with the private key from the vendor. Lets assume files are kept in /etc/ssl/crt
  2. Open the Apache configuration file in a text editor. Apache configuration files are usually found in /etc/httpd. The main configuration file is usually named conf.In most cases the <VirtualHost> blocks will be at the bottom of this httpd.conf file. Sometimes you will find the <VirtualHost> blocks in a separate file in a directory like /etc/httpd/vhosts.d/ or /etc/httpd/sites/ or in a file called ssl.conf.
  3. If you need your site to be accessible through both secure (https) and non-secure (http) connections, you will need a virtual host for each type of connection. Make a copy of the existing non-secure virtual host and change the port from port 80 to 443.
  4. Add the lines in bold below.<VirtualHost 192.168.0.1:443>
    DocumentRoot /var/www/website
    ServerName www.domain.com
    SSLEngine on
    SSLCertificateFile /etc/ssl/crt/primary.crt
    SSLCertificateKeyFile /etc/ssl/crt/private.key
    SSLCertificateChainFile /etc/ssl/crt/intermediate.crt

    </VirtualHost>
  5. Change the names of the files and paths to match your certificate files:
    1. SSLCertificateFileshould be your primary certificate file for your domain name.
    2. SSLCertificateKeyFileshould be the key file generated when you created the CSR.
    3. SSLCertificateChainFileshould be the intermediate certificate file (if any) that was supplied by your certificate authority
  6. Save the changes and exit the text editor.
  7. Restart your Apache web server using one of the following commands:/usr/local/apache/bin/apachectl start
    /usr/local/apache/bin/apachectl restart

 

Thank You !

Do Rate the content to understand the quality of blogs. So, to do necessary changes in future. Do Subscribe to get notified !!!

Happy Learning !!!

If you have doubt or queries, you can definetely comment us or can mail us on [email protected]

 

If you have any recommedation for future blog, You can email us on [email protected]

 

Top Searches :

  1. Best SSL Guide.
  2. Types of SSL.
  3. Best Jboss Server Security Guide.
  4. Introduction to hardening in Middleware.
  5. Hardening In Jboss EAP 5.1
  6. Enable TLS1.2 in Jboss EAP 7
  7. VAPT – Enabling TLS1.1/1.2 in Jboss
  8. VAPT – DISABLING HTTP METHODS
  9. VAPT – HOW TO REMOVE APACHE COYOTE VERSION FROM JBOSS
  10. INSTALLATION OF JBOSS ON LINUX
  11. INTRODUCTION TO JBOSS
  12. INTRODUCTION TO MIDDLEWARE
  13. Thread Dump
  14. Heap Dump

 

 

Leave a Reply

%d bloggers like this: