Firstly when your issuance email arrives you will have two certificates in the email - your server certificate and a chained certificate.
Copy the chained certificate into a text editor such as notepad and save as chain.crt.
Copy your web server certificate into a text editor such as notepad and save as yourdomain.txt.
These instructions apply for both Ensim Pro and Ensim 3.x.
Install your web server certificate |
| 1. |
Click SSL Settings - access to this link may differ depending on your version of Ensim:
If you are running Ensim Pro. In the shortcuts section of the Home page, click SSL Settings in the Web Server section:
Or if you are running Ensim 3.x, click the Services link on the left, then click the Edit button for the Apache Web Server service:
Then in the Apache Web Server Manager click the SSL Settings link:
|
| 2. |
Select Import at the bottom of the SSL Settings form.
|
| 3. |
Open yourdomain.txt in a text editor and copy the contents of yourdomain.txt. Paste the contents into the Certificate text box
Be sure to include -----BEGIN CERTIFICATE----- through -----END CERTIFICATE-----
 |
| 4. |
Select Save . |
| Install the Chained certificate |
| 1. |
Open the /etc/httpd/conf/ssl.crt/ (or /usr/local/apache/conf/ depending on your setup) directory. If it is not already present, create a new directory called ca-bundle . |
| 2. |
Copy the chain.crt file to the ca-bundle directory that you have just created.
Note: Copy the entire contents of the certificate from (and including) the -----BEGIN CERTIFICATE----- and -----END CERTIFICATE----- lines . |
| 3. |
Open the /etc/httpd/conf/httpd.conf file in a text editor
Locate the secure virtual host pertaining to your order - this should be in the bottom 3rd of the httpd.conf file. Add the following directive and chain.crt file reference:
SSLCACertificateFile /etc/httpd/conf/ssl.crt/ca-bundle/chain.crt
(or /usr/local/apache/conf/ca-bundle/chain.crt depending on your directory setup)
Save the changes.
|
| 4. |
Open the /usr/lib/opcenter/fastcgi/httpd.conf file in a text editor.
Locate the secure virtual host pertaining to your order. Add the following directive and chain.crt file reference:
SSLCACertificateFile /etc/httpd/conf/ssl.crt/ca-bundle/chain.crt
(or /usr/local/apache/conf/ca-bundle/chain.crt depending on your directory setup)
Save the changes. |
| 5. |
Open the /usr/lib/opcenter/fastcgi/httpd-tmpl.conf file in a text editor.
Locate the secure virtual host pertaining to your order. Add the following directive and chain.crt file reference:
SSLCACertificateFile /etc/httpd/conf/ssl.crt/ca-bundle/chain.crt
(or /usr/local/apache/conf/ca-bundle/chain.crt depending on your directory setup)
Save the changes. |
| 6. |
If your site uses a seperate site#.ssl config file then you will also need to:
Locate the secure virtual host pertaining to your order. Add the following directive and chain.crt file reference:
SSLCACertificateFile /etc/httpd/conf/ssl.crt/ca-bundle/chain.crt
(or /usr/local/apache/conf/ca-bundle/chain.crt depending on your directory setup)
Sa ve the changes.
Note: This will not be necessary for the majority of Ensim configurations - it is only necessary for configurations using a seperate site#.ssl config file. |
| 7. |
Restart the physical machine hosting the Web server . The domain is not secure until you do so. |
| Test your certificate by using a browser to connect to your server. Use the https protocol directive (e.g. https://your server/) to indicate you wish to use secure HTTP. Note: The padlock icon on your browser will be displayed in the locked position if your certificates are installed correctly and the server is properly configured for SSL. |
