How to Configure SSL Certificate in Apache Web Server

Apache is an open source web server software. It is the most popular web server software in use today, supporting over 70% of websites on the internet.

Apache was originally developed by Brian Behlendorf, who wanted to create a free and open source alternative to Microsoft’s IIS web server software. Apache was initially released as open-source software in 1995 and has since been downloaded more than 10 million times.

This article will show how you can enable ssl on you Apache web server container.

ServerAdmin [email protected]
ServerName domain.com
DocumentRoot /var/www/html/domain.com
<Directory "/var/www/html/domain.com">
Options FollowSymLinks MultiViews
AllowOverride All #Allow from all 
<Directory "/var/www/html/domain.com/wp-content/uploads/">
<Files "*.php">
Order Deny,Allow Deny from All
ErrorLog logs/domain.com_ssl_error.log 
TransferLog logs/domain.com_ssl_access.log
# SSL Engine Switch:
# Enable/Disable SSL for this virtual host.
SSLEngine on
SSLProtocol -SSLv2 -SSLv3 +TLSv1 +TLSv1.1 +TLSv1.2
SSLCipherSuite ECDH+AESGCM:DH+AESGCM:ECDH+AES256:DH+AES256:ECDH+AES128:DH+AES:ECDH+3DES:DH+3DES:RSA+AESGCM:RSA+AES:RSA+3DES:!aNULL:!MD5:!DSS
SSLHonorCipherOrder on 
SSLCertificateFile /etc/httpd/ssl/ssl-bundle_domain.com.crt 
SSLCertificateKeyFile /etc/httpd/ssl/ssl_domain.com.key 
SSLCertificateChainFile /etc/httpd/ssl/www_domain.com.crt_trustchain2.pem 
SSLCACertificateFile /etc/httpd/ssl/bundle.crt
# cat www_domain.com.crt COMODORSADomainValidationSecureServerCA.crt AddTrustExternalCARoot.crt >> www_domain.com.crt_trustchain2.pem
# cat www_domain.com.crt COMODORSADomainValidationSecureServerCA.crt COMODORSAAddTrustCA.crt AddTrustExternalCARoot.crt > ssl-bundle_domain.com.crt
# mv domain.com.key ssl_domain.com.key
# cp -rp www_domain.com.crt_trustchain2.pem /etc/httpd/ssl/
# cp -rp ssl-bundle_domain.com.crt /etc/httpd/ssl/
# cp -rp ssl_domain.com.key /etc/httpd/ssl/

Leave a Comment