home / articles / how install ssl certificate

How do I install a SSL Certificate?



SSL certificates provide protection against eavesdropping of information between the client and server on the Internet.
By installing an SSL certificate on your site, you will lift sales to your site and will protect your customers.

instructions for installing an SSL CERTIFICATE
1. buy a separate ip address for your site.
2. buy SSL Certificates
3. keep the private key for SSL Certificate genereatsii begins with "(----- BEGIN RSA PRIVATE KEY -----"


Installing an SSL Certificate - ISPMANAGER



1. add unique ip address for selected domain
2. in the domain settings, add access over SSL on port 443
3. choose option SSL Certificates from the menu and create an "existing" certificate
4. in the field "Key" add the copied protected key begins with "(----- BEGIN RSA "
5. in the field "Certificate" add the certificate that came to the email starts with "----- BEGIN CERTIFICATE ----- "
6. in the field "certificate chain" add the certificate chain is usually called the file bundle


Installing an SSL Certificate - APACHE 2



1. add unique ip address for selected domain
2. compile apache with ssl support
3. add apache config section server virtualhost on port 443:
NameVirtualHost ваш ip:443
<VirtualHost ваш ip:443>
   ServerName ваш ip:443
    ServerAlias www.вашдомен.com:443
    SSLEngine on
    SSLCertificateFile /путь/cert.crt
    SSLCertificateKeyFile /путь/cert.key
    SSLCACertificateFile /путь/cert.bundle
</VirtualHost>
4. add to the file cert.key your key that starts with "(----- BEGIN RSA "
5. add to the file cert.crt certificate that came trough emmail and starts with "----- BEGIN CERTIFICATE
6. add to the file cert.bundle the certificate chain is usually called the certificates chain bundle


Installing an SSL Certificate - NGINX



1. add unique ip address for selected domain
2. compile nginx with ssl support. /configure - with-http_ssl_module
3. Add nginx config server in the section following lines:
listen 443 default ssl;
ssl_certificate /путь/ssl/cert.pem;
ssl_certificate_key /путь/ssl/cert.key;
ssl_client_certificate /home/ssl/cert.pem;
ssl_verify_client off;
ssl_ciphers ECDHE-RSA-AES256-SHA:AES256-SHA:CAMELLIA256-SHA:DES-CBC3-SHA;
ssl_prefer_server_ciphers on;
ssl_protocols TLSv1;
ssl_session_cache shared:SSL:10m;
ssl_session_timeout 5m;
4. add to the file cert.key your key that starts with "(----- BEGIN RSA "
5. add to the file cert.pem certificate that came trough emmail and starts with "----- BEGIN CERTIFICATE ----- " and the certificate chain is usually called the certificates chain bundle