Nainstaluj ssl mod do apache:

 yum install mod_ssl openssl

Generuj a self-signed certifikát

# Generuj privatni key openssl genrsa -out ca.key 1024
#
Generuj CSR
openssl req -new -key ca.key -out ca.csr

#
Generuj Self Signed Key
openssl x509 -req -days 365 -in ca.csr -signkey ca.key -out ca.crt

# Presun soubory do spravne lokace
mv ca.crt /etc/pki/tls/certs
mv ca.key /etc/pki/tls/private/ca.key
mv ca.csr /etc/pki/tls/private/ca.csr

Uprav konfigurační soubor apache ssl:

vi +/SSLCertificateFile /etc/httpd/conf.d/ssl.conf

Zmen cesty na spravne.

SSLCertificateFile /etc/pki/tls/certs/ca.crt

Then set the correct path for the Certificate Key File a few lines below. If you've followed the instructions above it is:

SSLCertificateKeyFile /etc/pki/tls/private/ca.key

Quit  (Save a Exit vw vi je:  :wq)

a pak restartuj apache:

service httpd restart

/etc/init.d/httpd restart

3. Nastav virtual hosty

priklad:
<VirtualHost *:80>
        <Directory /var/www/vhosts/yoursite.com/httpdocs>
        AllowOverride All
        </Directory>
        DocumentRoot /var/www/vhosts/yoursite.com/httpdocs
        ServerName yoursite.com
</VirtualHost>
NameVirtualHost *:443
<VirtualHost *:443>
        SSLEngine on
        SSLCertificateFile /etc/pki/tls/certs/ca.crt
        SSLCertificateKeyFile /etc/pki/tls/private/ca.key
        <Directory /var/www/vhosts/yoursite.com/httpsdocs>
        AllowOverride All
        </Directory>
        DocumentRoot /var/www/vhosts/yoursite.com/httpsdocs
        ServerName yoursite.com
</VirtualHost>

Restartuj Apache:

/etc/init.d/httpd restart

4. Konfiguruj firewall

iptables -A INPUT -p tcp --dport 443 -j ACCEPT /sbin/service iptables save iptables -L -vZ
SHARE IT:

Related Posts

Trackbacks for this post

    Leave a Reply

    You can use these tags: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>