Difference between revisions of "How to setup an SSL Certificate for Free"

From Brian Nelson Ramblings
Jump to: navigation, search
(Created page with "Lets first start by making sure that mod_ssl is installed. We are setting up this free ssl on apache/mod_ssl ==Step 1 - Install mod_ssl== yum install mod_ssl openssl Yum ...")
 
Line 1: Line 1:
 +
==Step 1 - Install mod_ssl==
 
Lets first start by making sure that mod_ssl is installed.
 
Lets first start by making sure that mod_ssl is installed.
  
 
We are setting up this free ssl on apache/mod_ssl
 
We are setting up this free ssl on apache/mod_ssl
 
==Step 1 - Install mod_ssl==
 
  
 
  yum install mod_ssl openssl
 
  yum install mod_ssl openssl

Revision as of 05:56, 28 April 2013

Step 1 - Install mod_ssl

Lets first start by making sure that mod_ssl is installed.

We are setting up this free ssl on apache/mod_ssl

yum install mod_ssl openssl

Yum will let you know if the software has already been installed on the server

Step 2 - Generate your private key / CSR File

Generate your private key first

openssl genrsa -out briansnelson.com.key 2048

Now lets generate the CSR file

openssl req -new -key briansnelson.com.key -out briansnelson.com.csr

This step is optional - Generate a self-signed SSL certificate

openssl x509 -req -days 365 -in briansnelson.com.csr -signkey briansnelson.com.key -out briansnelson.com.crt

Step 3 - Get your Free SSL Certificate for 90 days

cat briansnelson.com.csr

You will need that output to order your Free SSL

Now visit http://www.comodo.com/e-commerce/ssl-certificates/free-ssl-certificate.php

Step 4 - Add to your vhost file

<VirtualHost *:443>
       SSLEngine on
       SSLCertificateFile /path/to/briansnelson.com.crt
       SSLCertificateKeyFile /path/to/briansnelson.com.key
       SSLCertificateChainFile /path/to/briansnelson.com.ca-bundle
       <Directory /path/to/your/site/>
       AllowOverride All
       </Directory>
       DocumentRoot /path/to/your/site/
       ServerName briansnelson.com www.briansnelson.com
</VirtualHost>

Step 5 - Configure Firewall to allow port 443

iptables -A INPUT -p tcp --dport 443 -j ACCEPT
/sbin/service iptables save
iptables -L -v

Now your site is ready to accept credit cards or server content on Facebook pages