Server Types

  Apache & mod_ssl/OpenSSL

  Cobalt RaQ 4/550/XTR

  BEA Systems Weblogic

  C2Net Stronghold

  WHM/CPanel

  Ensim

  F5 BigIP

  F5 Firepass

  HSphere

  IBM HTTPServer

  IBM Websphere

  Java-based webservers

  Lotus Domino 4.6x&5.0x

  Lotus Domino Go 4.6.2.6+

  Microsoft IIS 4.x

  Microsoft IIS 5.x & 6.x

  Microsoft OWA (Outlook Web Access)

  Microsoft ISA 2000

  iPlanet 4.x & Sun ONE Application Server 6.x

  Novell ConsoleONE

  Novell iChain

  Plesk Server Administrator

  Plesk 6

  Plesk 7 & 8

  SonicWall SSL Offloader

  Intel NetStructure 7110

  Website Pro 3.x

  Zeus Webserver v3

Buy Now  |  Special Offers  |  Corporate  |  Support  |  FAQ  |  About Us

Installing your Certificate on Apache via Ensim Webappliance 3.1.x

Step one: Loading the Site Certificate

You will receive an email from OptimumSSL with the certificate in the email (yourdomainname.crt). When viewed in a text editor, your certificate will look something like:

-----BEGIN CERTIFICATE-----
MIAGCSqGSIb3DQEHAqCAMIACAQExADALBgkqhkiG9w0BBwGggDCChAF
(.......)
K99c42ku3QrlX2+KeDi+xBG2cEIsdSiXeQS/16S36ITclu4AADEAAAAAAAAA
-----END CERTIFICATE-----

Copy your Certificate into the directory that you will be using to hold your certificates. In this example we will use /etc/ssl/crt/. Both the public and private key files will already be in this directory. The private key used in the example will be labelled private.key and the public key will be yourdomainname.crt. It is recommended that you make the directory that contains the private key file only readable by root.

Login to the Administrator console and select the site that the certificate was requested for.

Select Services, then Actions next to Apache Web Server and then SSL Settings. There should already be a 'Self Signed' certificate saved.

Select 'Import' and copy the text from the yourdomainname.crt file into the box

Select 'Save', the status should now change to successful.

Logout, do not select delete as this will delete the installed certificate.

Step two: Install the Intermediates

1. You will need to install the Intermediate certificates in order for browsers to trust your certificate. As well as your SSL three other certificates are also attached to the email from OptimumSSL. You will need to install the UTNAddTrustServerCA.crt and the OptimumSSLCA.crt intermediate certificates. This is done by combining these file in a single OptimumSSL Bundle file (file which you can download from our support section also sent to you in the zip file as OptimumSSL.ca-bundle ) In the Virtual Host settings for your site, in the virtual site file, you will need to add the following SSL directives. This may be achieved by:

1. Copy the UTNAddTrustServerCA.crt and the OptimumSSLCA.crt intermediate files into a new file called ca.txt (with the UTNAddTrustServerCA.crt on top and the OptimumSSLCA.crt underneath ) and place this in the same directory as the certificate.
2. Add the following line to the virtual host file under the virtual host domain for your site (assuming /etc/ssl/crt is the directory mentioned in 1.), if the line already exists amend it to read the following:

SSLCACertificateFile /etc/ssl/crt/ca.txt

If you are using a different location and certificate file names you will need to change the path and filename to reflect this.

The SSL section of the updated virtual host file should now read similar to this example (depending on your naming and directories used):

• SSLCertificateFile /etc/ssl/crt/yourdomainname.crt
• SSLCertificateKeyFile /etc/ssl/crt/private.key
• SSLCACertificateFile /etc/ssl/crt/ca.txt
• Save your virtual host file and restart Apache.

ou are now all set to start using your OptimumSSL certificate with your Apache Ensim configuration.