{"id":230,"date":"2016-07-30T13:10:42","date_gmt":"2016-07-30T10:10:42","guid":{"rendered":"https:\/\/community.virtono.com\/?p=230"},"modified":"2023-06-21T09:23:31","modified_gmt":"2023-06-21T06:23:31","slug":"steps-to-install-ssl-certificate-on-apache-web-server","status":"publish","type":"post","link":"https:\/\/www.virtono.com\/community\/tutorial-how-to\/steps-to-install-ssl-certificate-on-apache-web-server\/","title":{"rendered":"Steps to Install SSL Certificate on Apache Web Server"},"content":{"rendered":"<p>SSL stands for Secure Socket Layer.<\/p>\n<p><em>Secure Socket Layer<\/em> (SSL) technology allows web browsers and web servers to communicate over a secure connection.<\/p>\n<p><strong>What is a Certificate?<\/strong><\/p>\n<p>A certificate is a digitally-signed statement from one entity (person, company,<\/p>\n<p>etc.), saying that the public key (and some other information) of some other<\/p>\n<p>entity has a particular value. So in a sense, it is like digital version of your ID<\/p>\n<p>card such as driver&#8217;s license.<\/p>\n<p>A certificate is cryptographically signed and is practically impossible for anyone else to forge<\/p>\n<p>A certificate can be purchased from (signed by) a well-known CA (Certificate Authority) like Verisign.<\/p>\n<p>If you are looking for information, visit the article exclusively for <strong><a href=\"https:\/\/virtono.com\/community\/knowledgebase\/secure-socket-layer-ssl\/\" target=\"_blank\" rel=\"noopener\">Secure Socket Layer (SSL)<\/a>.<\/strong><\/p>\n<p><strong>\u00a0<\/strong><\/p>\n<p><strong>For now lets get on with our installation.<\/strong><\/p>\n<p><strong>Step 1: Save SSL Certificate Files<\/strong><\/p>\n<ul>\n<li>After payment and document verification process your will receive certificate files (server certificate, root certificate and intermediate certificate) via email. Store these all files on your apache server directory.<\/li>\n<\/ul>\n<p><strong>Step 2: Download CA bundle Files<\/strong><\/p>\n<ul>\n<li>For Example \u2013 The location on SSL key file is\u00a0<strong>\/etc\/ssl\/ssl.key<\/strong>and the location of the Server Certificate and CA-Bundle Files is \u2013 \/etc\/ssl\/ssl.crt)<\/li>\n<li>CA-bundles are required to install SSL Certificate. CA-Bundle files could be different based on the type of your SSL certificate (Either Domain, Organization or Extended Validation SSL certificate). Visit your SSL Certificate authority website for CA bundle files.<\/li>\n<\/ul>\n<p><strong>Step 3: SSL Configuration file (HTTPD.CNF) modification<\/strong><\/p>\n<ul>\n<li>Open the\u00a0<strong>cnf<\/strong>file using any text editor (E.G Notepad).<\/li>\n<li>In the\u00a0<strong>virtual host<\/strong>section add following lines to add information about the domain which you wish to secure using SSL certificate.<\/li>\n<li><strong>SSLEngine<\/strong>on<\/li>\n<li><strong>SSLCertificateKeyFile\u00a0<\/strong>\/etc\/ssl\/ssl.key\/server.key<\/li>\n<li><strong>SSLCertificateFile\u00a0<\/strong>\/etc\/ssl\/ssl.crt\/domain.crt<\/li>\n<li><strong>SSLCertificateChainFile<\/strong>\/etc\/ssl\/ssl.crt\/domain.ca-bundle<\/li>\n<\/ul>\n<ul>\n<li><strong><em>For older apache version use\u00a0<\/em>SSLCACertificateFile<em>instead of\u00a0<\/em>SSLCertificateChainFile<em>.<\/em><\/strong><\/li>\n<li><strong>SSLProtocol all<\/strong><\/li>\n<li><strong>SSLHonorCipherOrder<\/strong>On (Ciphers use order in server)<\/li>\n<li><strong>SSLCipherSuite<\/strong><\/li>\n<li>ECDH+AESGCM:DH+AESGCM:ECDH+AES256:DH+AES256:ECDH+AES128:DH+AES:ECDH+3DES:DH+3DES:RSA+AESGCM:RSA+AES:RSA+3DES:!aNULL:!MD5:!DSS (To set up the priority to the strong ciphers &amp; also disabling the weak ciphers as well.)<\/li>\n<li>Save the\u00a0<strong>cnf<\/strong><\/li>\n<\/ul>\n<ul>\n<li><strong>Restart <\/strong>your Apache Server.<\/li>\n<li>You can also apply following commands to restart Apache<\/li>\n<li>\/usr\/local\/apache\/bin\/apachectl startssl<\/li>\n<li>\/usr\/local\/apache\/bin\/apachectl restart<\/li>\n<li>Your SSL Certificate is now installed on your Apache.<\/li>\n<li><strong><em>Note: File names such as server.key, domain.crt, and domain.ca-bundle are used for illustration purpose only. You have to use your own certificate file names.<\/em><\/strong><\/li>\n<\/ul>\n","protected":false},"excerpt":{"rendered":"<p>SSL stands for Secure Socket Layer. Secure Socket Layer (SSL) technology allows web browsers and web servers to communicate over a secure connection. What is a Certificate? A certificate is a digitally-signed statement from one entity (person, company, etc.), saying that the public key (and some other information) of some<\/p>\n","protected":false},"author":3,"featured_media":231,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_jetpack_newsletter_access":"","_jetpack_dont_email_post_to_subs":false,"_jetpack_newsletter_tier_id":0,"_jetpack_memberships_contains_paywalled_content":false,"_jetpack_memberships_contains_paid_content":false,"footnotes":"","jetpack_publicize_message":"","jetpack_publicize_feature_enabled":true,"jetpack_social_post_already_shared":true,"jetpack_social_options":{"image_generator_settings":{"template":"highway","default_image_id":0,"font":"","enabled":false},"version":2},"jetpack_post_was_ever_published":false},"categories":[3],"tags":[],"class_list":["post-230","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-tutorial-how-to"],"jetpack_publicize_connections":[],"jetpack_featured_media_url":"https:\/\/i0.wp.com\/www.virtono.com\/community\/wp-content\/uploads\/2016\/07\/ic.jpg?fit=1800%2C942&ssl=1","jetpack_sharing_enabled":true,"jetpack_shortlink":"https:\/\/wp.me\/p7ISfL-3I","jetpack_likes_enabled":true,"jetpack-related-posts":[{"id":214,"url":"https:\/\/www.virtono.com\/community\/knowledgebase\/secure-socket-layer-ssl\/","url_meta":{"origin":230,"position":0},"title":"Secure Socket Layer (SSL)","author":"Daniel Draga","date":"July 30, 2016","format":false,"excerpt":"SSL stands for Secure Socket Layer. Secure Socket Layer (SSL) technology allows web browsers and web servers to communicate over a secure connection Originally developed by Netscape, SSL has been universally accepted on the World Wide Web for authenticated and encrypted communication between clients and servers. Responsible for the emergence\u2026","rel":"","context":"In &quot;Knowledgebase&quot;","block_context":{"text":"Knowledgebase","link":"https:\/\/www.virtono.com\/community\/category\/knowledgebase\/"},"img":{"alt_text":"","src":"https:\/\/i0.wp.com\/www.virtono.com\/community\/wp-content\/uploads\/2016\/07\/2.jpg?fit=376%2C286&ssl=1&resize=350%2C200","width":350,"height":200},"classes":[]},{"id":942,"url":"https:\/\/www.virtono.com\/community\/news-announcements\/web-pages-not-served-via-https-will-be-marked-not-secure-in-google-chrome-and-mozilla-firefox-are-you-prepared\/","url_meta":{"origin":230,"position":1},"title":"Web pages not served via HTTPS will be marked \u2018not secure\u2019 in Google Chrome and Mozilla Firefox. Are you prepared?","author":"Virtono","date":"May 18, 2017","format":false,"excerpt":"Browsers are changing, are you prepared? Web pages not served via HTTPS will be marked \u2018not secure\u2019 in Google Chrome and Mozilla Firefox. Could your website be one of them? As the world's most popular browsers, this will affect nearly 70% of global internet traffic and other browser companies will\u2026","rel":"","context":"In &quot;Announcements&quot;","block_context":{"text":"Announcements","link":"https:\/\/www.virtono.com\/community\/category\/news-announcements\/"},"img":{"alt_text":"","src":"https:\/\/i0.wp.com\/www.virtono.com\/community\/wp-content\/uploads\/2017\/05\/https.png?fit=1197%2C854&ssl=1&resize=350%2C200","width":350,"height":200,"srcset":"https:\/\/i0.wp.com\/www.virtono.com\/community\/wp-content\/uploads\/2017\/05\/https.png?fit=1197%2C854&ssl=1&resize=350%2C200 1x, https:\/\/i0.wp.com\/www.virtono.com\/community\/wp-content\/uploads\/2017\/05\/https.png?fit=1197%2C854&ssl=1&resize=525%2C300 1.5x, https:\/\/i0.wp.com\/www.virtono.com\/community\/wp-content\/uploads\/2017\/05\/https.png?fit=1197%2C854&ssl=1&resize=700%2C400 2x, https:\/\/i0.wp.com\/www.virtono.com\/community\/wp-content\/uploads\/2017\/05\/https.png?fit=1197%2C854&ssl=1&resize=1050%2C600 3x"},"classes":[]},{"id":3293,"url":"https:\/\/www.virtono.com\/community\/tutorial-how-to\/install-jitsi-on-ubuntu-20-04\/","url_meta":{"origin":230,"position":2},"title":"Install Jitsi on Ubuntu 20.04","author":"George B.","date":"April 22, 2023","format":false,"excerpt":"If you're looking to install Jitsi on Ubuntu 20.04 LTS, this guide will take you through the process step-by-step. Jitsi Meet is an open-source video conferencing software that provides secure and easy-to-use video conferencing capabilities. It is designed for use in small to medium-sized teams and has features such as\u2026","rel":"","context":"In &quot;Tutorials&quot;","block_context":{"text":"Tutorials","link":"https:\/\/www.virtono.com\/community\/category\/tutorial-how-to\/"},"img":{"alt_text":"","src":"https:\/\/i0.wp.com\/www.virtono.com\/community\/wp-content\/uploads\/2023\/04\/How-to-install-Jitsi-on-Ubuntu.png?fit=600%2C330&ssl=1&resize=350%2C200","width":350,"height":200,"srcset":"https:\/\/i0.wp.com\/www.virtono.com\/community\/wp-content\/uploads\/2023\/04\/How-to-install-Jitsi-on-Ubuntu.png?fit=600%2C330&ssl=1&resize=350%2C200 1x, https:\/\/i0.wp.com\/www.virtono.com\/community\/wp-content\/uploads\/2023\/04\/How-to-install-Jitsi-on-Ubuntu.png?fit=600%2C330&ssl=1&resize=525%2C300 1.5x"},"classes":[]},{"id":3368,"url":"https:\/\/www.virtono.com\/community\/tutorial-how-to\/how-to-install-kubernetes-cert-manager\/","url_meta":{"origin":230,"position":3},"title":"How to install Kubernetes Cert-Manager","author":"George B.","date":"May 21, 2023","format":false,"excerpt":"Kubernetes Cert-Manager, an open-source project, has emerged as a powerful tool to streamline certificate management within Kubernetes environments. In this article, we will delve into the world of Cert-Manager, exploring its features, benefits, and how it simplifies the management of certificates. In the world of modern application development, the need\u2026","rel":"","context":"In &quot;Tutorials&quot;","block_context":{"text":"Tutorials","link":"https:\/\/www.virtono.com\/community\/category\/tutorial-how-to\/"},"img":{"alt_text":"","src":"https:\/\/i0.wp.com\/www.virtono.com\/community\/wp-content\/uploads\/2023\/05\/How-to-install-Kubernetes-Cert-Manager.png?fit=600%2C330&ssl=1&resize=350%2C200","width":350,"height":200,"srcset":"https:\/\/i0.wp.com\/www.virtono.com\/community\/wp-content\/uploads\/2023\/05\/How-to-install-Kubernetes-Cert-Manager.png?fit=600%2C330&ssl=1&resize=350%2C200 1x, https:\/\/i0.wp.com\/www.virtono.com\/community\/wp-content\/uploads\/2023\/05\/How-to-install-Kubernetes-Cert-Manager.png?fit=600%2C330&ssl=1&resize=525%2C300 1.5x"},"classes":[]},{"id":1152,"url":"https:\/\/www.virtono.com\/community\/tutorial-how-to\/set-up-the-ftp-server-under-debian\/","url_meta":{"origin":230,"position":4},"title":"Set up the FTP server under Debian","author":"Shreyash Sharma","date":"October 23, 2017","format":false,"excerpt":"ProFTPD\u00a0is a widely-used, well-configurable FTP server for UNIX-based operating systems.\u00a0This article shows the\u00a0installation and configuration of ProFTPD\u00a0in version 1.3.5b-4 on\u00a0Debian\u00a0Linux.\u00a0In the example shown, a TLS encryption is configured on the FTP server to encrypt the communication between the FTP client (eg FileZilla) and the FTP server ProFTPD.\u00a0Debian Stretch 9 was\u2026","rel":"","context":"In &quot;Tutorials&quot;","block_context":{"text":"Tutorials","link":"https:\/\/www.virtono.com\/community\/category\/tutorial-how-to\/"},"img":{"alt_text":"","src":"https:\/\/i0.wp.com\/www.virtono.com\/community\/wp-content\/uploads\/2017\/10\/unnamed.png?fit=300%2C300&ssl=1&resize=350%2C200","width":350,"height":200},"classes":[]},{"id":952,"url":"https:\/\/www.virtono.com\/community\/news-announcements\/hosting-website-with-caddy-on-ubuntu\/","url_meta":{"origin":230,"position":5},"title":"Hosting Website with Caddy on Ubuntu","author":"Daniel Draga","date":"June 7, 2017","format":false,"excerpt":"Introduction \u00a0 Caddy is the new trend. Caddy is the new web server. It\u2019s uncomplicated and it\u2019s great to be used for \u00a0environment production. It contains an helpful automatic TLS encryption. \u00a0It also features an instinctive configuration file, HTTP\/2 support. The HTTP\/2 of Caddy is the new version of HTTP\u2026","rel":"","context":"In &quot;Announcements&quot;","block_context":{"text":"Announcements","link":"https:\/\/www.virtono.com\/community\/category\/news-announcements\/"},"img":{"alt_text":"","src":"https:\/\/i0.wp.com\/www.virtono.com\/community\/wp-content\/uploads\/2017\/06\/how-to-install-caddy-on-ubuntu-16-04.jpg?fit=1200%2C600&ssl=1&resize=350%2C200","width":350,"height":200,"srcset":"https:\/\/i0.wp.com\/www.virtono.com\/community\/wp-content\/uploads\/2017\/06\/how-to-install-caddy-on-ubuntu-16-04.jpg?fit=1200%2C600&ssl=1&resize=350%2C200 1x, https:\/\/i0.wp.com\/www.virtono.com\/community\/wp-content\/uploads\/2017\/06\/how-to-install-caddy-on-ubuntu-16-04.jpg?fit=1200%2C600&ssl=1&resize=525%2C300 1.5x, https:\/\/i0.wp.com\/www.virtono.com\/community\/wp-content\/uploads\/2017\/06\/how-to-install-caddy-on-ubuntu-16-04.jpg?fit=1200%2C600&ssl=1&resize=700%2C400 2x, https:\/\/i0.wp.com\/www.virtono.com\/community\/wp-content\/uploads\/2017\/06\/how-to-install-caddy-on-ubuntu-16-04.jpg?fit=1200%2C600&ssl=1&resize=1050%2C600 3x"},"classes":[]}],"_links":{"self":[{"href":"https:\/\/www.virtono.com\/community\/wp-json\/wp\/v2\/posts\/230","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.virtono.com\/community\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.virtono.com\/community\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.virtono.com\/community\/wp-json\/wp\/v2\/users\/3"}],"replies":[{"embeddable":true,"href":"https:\/\/www.virtono.com\/community\/wp-json\/wp\/v2\/comments?post=230"}],"version-history":[{"count":3,"href":"https:\/\/www.virtono.com\/community\/wp-json\/wp\/v2\/posts\/230\/revisions"}],"predecessor-version":[{"id":3537,"href":"https:\/\/www.virtono.com\/community\/wp-json\/wp\/v2\/posts\/230\/revisions\/3537"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.virtono.com\/community\/wp-json\/wp\/v2\/media\/231"}],"wp:attachment":[{"href":"https:\/\/www.virtono.com\/community\/wp-json\/wp\/v2\/media?parent=230"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.virtono.com\/community\/wp-json\/wp\/v2\/categories?post=230"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.virtono.com\/community\/wp-json\/wp\/v2\/tags?post=230"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}