SSL Certs

From Da Nerd Mage Wiki
Revision as of 16:23, 1 January 2022 by Tinker (talk | contribs) (Created page with "== On an Apache based server == From /usr/share/doc/apache2/README.Debian.gz === Enabling SSL === To enable SSL, type: *<code>sudo a2ensite default-ssl</code> *<code>sudo a2enmod ssl</code> If you want to use self-signed certificates, you should install the ssl-cert<br>package (see below). Otherwise, just adjust the SSLCertificateKeyFile and SSLCertificateFile directives in '/etc/apache2/sites-available/default-ssl.conf' to point to your SSL certificate. Then restart a...")
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to navigation Jump to search

On an Apache based server

From /usr/share/doc/apache2/README.Debian.gz

Enabling SSL

To enable SSL, type:

  • sudo a2ensite default-ssl
  • sudo a2enmod ssl

If you want to use self-signed certificates, you should install the ssl-cert
package (see below). Otherwise, just adjust the SSLCertificateKeyFile and SSLCertificateFile directives in '/etc/apache2/sites-available/default-ssl.conf' to point to your SSL certificate. Then restart apache:

  • sudo systemctl restart apache2

The SSL key file should only be readable by root; the certificate file may be globally readable. These files are read by the Apache parent process which runs as root, and it is therefore not necessary to make the files readable by the www-data user.

Getting proper certificates onto the machine

Retrieved from ‘https://wiki.nerdmage.ca/index.php?title=SSL_Certs&oldid=84