Table of Contents

Creating CSR with OPEN SSL

This website will produce a command that you can use on your LINUX server to produce the Private key and CSR.

https://www.digicert.com/easy-csr/openssl.htm

Install

yum install mod_ssl

Vhost

<VirtualHost *:80>
    ServerName lukeslinux.co.uk
    ServerAlias www.lukeslinux.co.uk
    DocumentRoot /var/www/vhosts/lukeslinux.co.uk

    <Directory /var/www/vhosts/lukeslinux.co.uk>
        Options Indexes FollowSymLinks
        AllowOverride All
        Order allow,deny
        Allow from all
    </Directory>

</VirtualHost>

<VirtualHost *:443>

    ServerName lukeslinux.co.uk
    ServerAlias www.lukeslinux.co.uk
    DocumentRoot /var/www/vhosts/lukeslinux.co.uk

    <Directory /var/www/vhosts/lukeslinux.co.uk>
        Options Indexes FollowSymLinks
        AllowOverride All
        Order allow,deny
        Allow from all
    </Directory>
    
    SSLEngine ON
SSLCertificateFile /etc/httpd/conf/ssl/ssl.crt/lukeslinux_co_uk.crt
SSLCertificateKeyFile /etc/httpd/conf/ssl/ssl.key/lukeslinux_co_uk.key
SSLCACertificateFile /etc/httpd/conf/ssl/ssl.key/ca.pem

SSLCipherSuite DEFAULT:!EXP:!SSLv2:!DES:!IDEA:!SEED:+3DES:!aNULL:!eNULL:!EXPORT:!MD5:!PSK:!RC4:!AES128:!RSA128
SSLProtocol all -SSLv2 -SSLv3 -TLSv1 -TLSv1.1 +TLSv1.2

ErrorLog /var/log/httpd/lukeslinux.co.uk_ssl-error_log
CustomLog /var/log/httpd/lukeslinux.co.uk_ssl-access_log common

</VirtualHost>


Test SSL Install

https://www.sslshopper.com/ssl-checker.html