hoi,
ik heb een certificaatje gekocht bij registerfly.
omdat mn budget zeer beperkt is maar toch iets beters
dan een zelf gemaakte (met allerlei meldingen als gevolg)
heb de goedkoopste gekocht.
Ik ben wel bekend met intermediate certificaten...
maar dit is weer wat "nieuws"
ipv. 1 file als intermediate worden me er 3 gestuurd:
Root CA Certificate - AddTrustExternalCARoot.crt
Intermediate CA Certificate - UTNAddTrustServerCA.crt
Intermediate CA Certificate - ResellerFlyCertificateServices.crt
hun uitleg begrijp ik niet helemaal...
ze hebben het over een bundle...
maar moet je dan de httpd.conf verwijzen naar een directorry???
met een intermediate, zette ik voor heen 1 regel in de ssl.conf
en die verwees naar 1 file.
hoe zit dit?
groetjes
Anouk
///////////////////////////////////////////////////////////////
Step two: Install the Intermediate Certificate
You will need to install the Intermediate CA certificates in order for browsers to trust your certificate. The Intermediate CA certificates are contained within the 'ca-bundle' file that was attached to your email in the *.zip file we sent you (this should be named 'yourSERVERNAME.ca-bundle'). In the relevant 'Virtual Host' section for your site, you will need to do the following to get this file correctly referenced:
a. First, copy the 'yourSERVERNAME.ca-bundle' file to the same directory as the certificate and key files. As a reminder, in this example we called the directory '/etc/ssl/crt/'.
b. Next, add the following line to the SSL section of the 'httpd.conf' file. Again we assume that '/etc/ssl/crt/' is the directory to where you have copied the intermediate CA file. If the line already exists amend it to read the following:
SSLCertificateChainFile /etc/ssl/crt/yourSERVERNAME.ca-bundle
c. If you are using a different location and different certificate file names, you will need to change the path and filename to reflect the path and filename that you are using. The SSL section of the updated config file should now read:
SSLCertificateFile /etc/ssl/crt/yourDOMAINNAME.crt
SSLCertificateKeyFile /etc/ssl/crt/private.key
SSLCertificateChainFile /etc/ssl/crt/yourSERVERNAME.ca-bundle
d. Save your 'config' file and restart Apache.
///////////////////////////////////////////////////////////////