Fully validated, Enterprise SSL Certificates

• Products
• Resellers
• Comparisons
• Corporate
• Support
• Contacts

Latest News:

• SSL Support Home
• Browser Compatibility
• Free Security Guides
• EPKI Support
• FAQs & Solutions
• SSL Application Stages:
• 1. Creating a CSR
• 2. Buy a Certificate now
• 3. Doc Requirements
• 4. Installing a Certificate

Installing your Certificate on Apache via Ensim Webappliance 3.1.x

Step one: Loading the Site Certificate

You will receive an email from Comodo with the certificate in the email (yourdomainname.crt). When viewed in a text editor, your certificate will look something like:

-----BEGIN CERTIFICATE-----
MIAGCSqGSIb3DQEHAqCAMIACAQExADALBgkqhkiG9w0BBwGggDCCAmowggHXAhAF
(.......)
K99c42ku3QrlX2+KeDi+xBG2cEIsdSiXeQS/16S36ITclu4AADEAAAAAAAAA
-----END CERTIFICATE-----

Copy your Certificate into the directory that you will be using to hold your certificates. In this example we will use /etc/ssl/crt/. Both the public and private key files will already be in this directory. The private key used in the example will be labeled private.key and the public key will be yourdomainname.crt.

We recommend that you make the directory that contains the private key file only readable by root.

Login to the Administrator console and select the site for which the certificate was requested.

Select Services, then Actions next to Apache Web Server and then SSL Settings. There should already be a 'Self Signed' certificate saved.

Select 'Import' and copy the text from the yourdomainname.crt file into the box

Select 'Save'.

Logout. Do not select delete, as this will delete the installed certificate.

Step two: Install the Intermediate

You will need to install the Intermediate CA certificate in order for browsers to trust your certificate. In addition to your SSL two other certificates are also attached to the email from Comodo. You will need to install the intermediate CA certificate.

In the Virtual Host settings for your site, you will need to add the following SSL directives in the virtual site file. This may be achieved by:

1. Copy the intermediate CA file to the same directory as the certificate.

2. Add the following line to the virtual host file under the virtual host domain for your site (assuming /etc/ssl/crt is the directory mentioned in 1.). If the line already exists amend it to read as follows:

SSLCACertificateFile /etc/ssl/crt/ca.txt

If you are using a different location and certificate file names you will need to change the path and filename to reflect this.
The SSL section of the updated virtual host file should now read similar to this example (depending on your naming and directories used):

SSLCertificateFile /etc/ssl/crt/yourdomainname.crt
SSLCertificateKeyFile /etc/ssl/crt/private.key
SSLCACertificateFile /etc/ssl/crt/ca.txt

Save your virtual host file and restart Apache.
You are now set to start using your Comodo certificate with your Apache Ensim configuration.