If your website is publicly accessible, our SSL Certificate Checker can help you diagnose common problems. Use the DigiCert ® SSL Installation Diagnostics Tool To concatenate the files, run the following command:Ĭongratulations! You've successfully installed your SSL certificate. You need to concatenate your primary certificate file (your_domain_name.crt) and the intermediate certificate file (DigiCertCA.crt) into a single. Note: Make them readable by root only to increase security.Ĭoncatenate the primary and intermediate certificates key file you generated when creating the CSR, to the directory on the server where you'll keep your certificate and key files. Log in to your DigiCert account and download the intermediate (DigiCertCA.crt) and your primary certificate ( your_domain_name.crt) files.Ĭopy these files, along with the. If you need to concatenate your primary certificate and your intermediate certificate in to a single file, see step 2.Ĭopy the certificate files to your server pem file contains both your primary certificate and the intermediate certificate. You should've received a your_domain_name.pem file from DigiCert in an email when your certificate was issued. How to Install and Configure Your SSL Certificate If you still need to create a certificate signing request (CSR) and order your certificate, see Nginx: Creating Your CSR with OpenSSL.Īfter we've validated and issued your SSL certificate, you can install it on the Nginx server where the CSR was generated and configure the server to use it. Nginx: Installing & Configuring Your SSL Certificate You'll need it later when installing your SSL certificate.Īfter you've received your SSL certificate from DigiCert, you can install it on your server. csr file that you created with a text editor.Ĭopy the text, including the -BEGIN NEW CERTIFICATE REQUEST- and -END NEW CERTIFICATE REQUEST- tags, and paste it in to the DigiCert order form. Note: You may have already set up default information. When prompted, type your organizational information, beginning with your geographic information. Note: If you're generating a Nginx CSR for a Wildcard certificate, make sure your common name starts with an asterisk (e.g., *.). When prompted for the Common Name (domain name), type the fully qualified domain (FQDN) for the site that you are going to secure. Certificate Signing Request (CSR) file: Used to order your SSL certificate and later to encrypt messages that only its corresponding private key can decrypt. ![]() Private-Key File: Used to generate the CSR and later to secure and verify connections using the certificate.You've now started the process for generating the following two files: Openssl req –new –newkey rsa:2048 –nodes –keyout server.key –out server.csr
0 Comments
Leave a Reply. |