Welcome to the Question2Answer Q&A. There's also a demo if you just want to try it out.
+1 vote
1.4k views
in Q2A Core by
I am trying to use SSL for my question2answer portal, How should I configure my Apache web server and make changes to question2answer files to make it work?

1 Answer

+2 votes
by

You should first go through entire process of SSL certificate issuance such as CSR generation, and then validation process. After all this process, you will have your certificate issuance from Certificate Authority.

Once an SSL certificate you will have then start installation process. In order to install an SSL certificate apache, i would recommend the best guide with step-by-step process.

  1. Save the primary and intermediate certificates to a folder on the server with the private key.
  2. Open the Apache configuration file in a text editor. Apache configuration files are usually found in /etc/httpd. The main configuration file is usually named httpd.conf. In most cases the <VirtualHost> blocks will be at the bottom of this httpd.conf file. Sometimes you will find the <VirtualHost> blocks in a separate file in a directory like /etc/httpd/vhosts.d/ or /etc/httpd/sites/ or in a file calledssl.conf.
  3. If you need your site to be accessible through both secure (https) and non-secure (http) connections, you will need a virtual host for each type of connection. Make a copy of the existing non-secure virtual host and change the port from port 80 to 443.
  4. Add the lines in bold below.<VirtualHost 192.168.0.1:443>
    DocumentRoot /var/www/website
    ServerName www.domain.com
    SSLEngine on
    SSLCertificateFile /etc/ssl/crt/primary.crt
    SSLCertificateKeyFile /etc/ssl/crt/private.key
    SSLCertificateChainFile /etc/ssl/crt/intermediate
    .crt
    </VirtualHost> 
  5. Change the names of the files and paths to match your certificate files:
    1. SSLCertificateFile should be your primary certificate file for your domain name.
    2. SSLCertificateKeyFile should be the key file generated when you created the CSR.
    3. SSLCertificateChainFile should be the intermediate certificate file (if any) that was supplied by your certificate authority
  6. Save the changes and exit the text editor.
  7. Restart your Apache web server using one of the following commands:/usr/local/apache/bin/apachectl startssl
    /usr/local/apache/bin/apachectl restart

 

...