beautypg.com

Obtaining a web site certificate, Installing the certificate on your server, Enabling ssl for the site – Apple Mac OS X Server (version 10.2.3 or later) User Manual

Page 384

background image

384

Chapter 8

m Organizational name: The organization to which your domain name is registered.

m Organizational unit: Usually something similar to a department name.

m Common name of your Web server: The DNS name, such as server.apple.com.

m Email address: The email address to which you want the certificate sent.

The file “csr.pem” is generated from the information you provided.

7

At the prompt, type the following, then press Return.

cat csr.pem

The cat command lists the contents of the file you created in step 5 (csr.pem). You should
see the phrase “Begin Certificate Request” followed by a cryptic message. The message ends
with the phrase “End Certificate Request.” This is your certificate signing request (CSR).

Obtaining a Web Site Certificate

You must purchase a certificate for each Web site from an issuing authority.

Keep these important points in mind when purchasing your certificate:

m You must provide an InterNIC-registered domain name that’s registered to your

organization.

m If you are prompted to choose a software vendor, choose Apache Freeware with SSLeay.

m You have already generated a CSR, so when prompted, open your CSR file using a text

editor. Then copy and paste the contents of the CSR file into the appropriate text field on
the issuing authority’s Web site.

After you’ve completed the process, you’ll receive an email message that contains a Secure
Server ID. This is your server certificate. When you receive the certificate, save it to your Web
server’s hard disk as a file named server.crt.

Installing the Certificate on Your Server

1

Log in to your server as the administrator or super user (also known as root).

2

If it doesn’t already exist on your server, create a directory with this name:

/etc/httpd/ssl.crt

3

Copy server.crt (the file that contains your Secure Server ID) to the ssl.crt directory.

Enabling SSL for the Site

1

In Server Settings, click Web and choose Configure Web Service.

2

Make sure “Enable SSL support” is selected for the entire site.

3

Click Sites, then select the site where you plan to use the certificate, and click Edit.

4

Click the Security tab.

LL0395.Book Page 384 Wednesday, November 20, 2002 11:44 AM

See also other documents in the category Apple Software: