Apache HTTPS Certificate Purchase and Installation

HTTPS Certificate Purchased from SSLs.com (Should work on other Cert Providers)
Installation on Ubuntu 14.04 / 16.04 + Apache 2.4
With Apache settings to harden SSL settings for better security.

Too lazy to research and type every time so put it here for my own copy-and-paste.

1. Generate CSR and Private Key

2. Paste content of .csr to your Cert Provider and finish all validations they need.

3. Install Apache2 Certificates

Extract *.crt, *.ca-bundle downloaded from your Cert Provider to /etc/apache2/ssl/

Install Certificates
Edit /etc/apache2/sites-available/default-ssl.conf, update the following lines

Improve SSL Settings:
Edit /etc/apache2/mods-available/ssl.conf, update the following lines

Restart Apache

3. Test SSL
You should able to obtain an A+ grade with above setup

https://www.ssllabs.com/ssltest/index.html


References
https://www.digitalocean.com/community/tutorials/how-to-protect-your-server-against-the-poodle-sslv3-vulnerability

https://www.digicert.com/ssl-support/ssl-enabling-perfect-forward-secrecy.htm

One Reply to “Apache HTTPS Certificate Purchase and Installation”

Leave a Reply

Your email address will not be published.