Creating a CA-signed certificateΒΆ
To create an SSL certificate signed by a trusted certificate authority or CA, follow these steps:
After enabling SSL, send the
/etc/pki/tls/private/ca.csrfile to the CA to be signed and ask them to return it as Base64 encoded.
Important
When exporting a certificate, do not select DER encoded as the export file format.
Once the CA-signed certificate is received, stop the Apache service by entering
service httpd stop.Replace the active SSL certificate with the new one and rename the file to
*//etc/pki/tls/certs/ca.crt.Restart the Apache service by entering
service httpd start.