CentOS SSL安裝

一、安裝SSL相關元件
       # yum install mod_ssl openssl

二、安裝 GRCA 及 GCA 之憑證串鏈與 SSL 憑證
     # openssl x509 -in server.cer -inform DER -out server.crt


三、設定/etc/httpd/conf.d/ssl.conf 設定新建立的憑證位置
       找到下列文字：
        #   Server Certificate:
        # Point SSLCertificateFile at a PEM encoded certificate.  If
        # the certificate is encrypted, then you will be prompted for a
        # pass phrase.  Note that a kill -HUP will prompt again.  A new
        # certificate can be generated using the genkey(1) command.
        SSLCertificateFile /etc/pki/tls/certs/localhost.crt

        #   Server Private Key:
        #   If the key is not combined with the certificate, use this
        #   directive to point at the key file.  Keep in mind that if
        #   you've both a RSA and a DSA private key you can configure
        #   both in parallel (to also allow the use of DSA ciphers, etc.)
        SSLCertificateKeyFile /etc/pki/tls/private/localhost.key

        將紅色文字修改為自己新建立的憑證檔
        SSLCertificateFile /etc/pki/tls/certs/idindon.crt
        SSLCertificateKeyFile /etc/pki/tls/private/idindon.key


一、GCA政府憑證管理中心Apache SSL憑證請求檔製作與憑證安裝手冊
二、CENTOS 6.4中Apache 安裝與設定