Setup Preparation
1. Install openssl
to enable Apache to support SSL, you need to install OpenSSL support first. Recommended download install openssl-0.9.8k.tar.gz
Download openssl:http://www.openssl.org/source/
TAR-ZXF openssl-0.9.8k.tar.gz //Unzip the installation package  
CD openssl-0.9.8k //into the unpacked installation package
./config //configuration installation. It is recommended to use the default configuration
make && make install //compile and install
OpenSSL will be installed to the default /usr/local/ssl
2. Install apache
./configure--prefix=/usr/local/apache--enable-so-- Enable-ssl--with-ssl=/usr/local/ssl--enable-mods-shared=all //configuration installation. Recommended dynamic compilation modules
make && make install
The Apache module is dynamically compiled for easy loading and management of modules. Apache will be installed to/usr/local/apache 3. Apply for a certificate go to the website of https://buy.wosign.com to apply for an SSL certificate. Successful after the Wosign request certificate, will get a password of the compressed package file, enter the certificate password after extracting five files: Forapache, Foriis, Forngnix, Fortomcat, Forother Server, this is the certificate of several formats, A certificate in Forapache format is required on Apache. 4. Install the SSL certificate
A. Open the httpd.conf file in the Conf directory under the Apache installation directory to find
#LoadModule Ssl_module modules/mod_ssl.so
#Include conf/extra/httpd_ssl.conf
Delete the configuration statement comment symbol "#" at the beginning of the line
Save exit.
B. Open the httpd-ssl.conf file in the Conf/extra directory under the Apache installation directory
Look for the following configuration statement in the configuration file to configure the server certificate public key under this path
Sslcertificatefile CONF/SSL.CRT/TEST.WOSIGN.COM.CRT (certificate public key) configures the server certificate private key under this path
Sslcertificatekeyfile Conf/ssl.key/test.wosign.com.key (certificate private key) configures the server certificate chain under this path
#SSLCertificateChainFile CONF/SSL.CRT/ROOT_BUNDLE.CRT (certificate chain) Delete the "#" comment at the beginning of the line to save the exit and restart Apache. Restart mode:
C, enter the Apache installation directory of the bin directory, run the following command
./apachectl-k Stop
./apachectl-k start5. Test installation Results access the domain name of the https://+ certificate binding, the test effect is as follows note: If the site is not properly accessed via HTTPS after deployment, you can confirm that server 443 port is open or blocked by accelerator tools such as website defender.
(1) Open method: Firewall Settings-Exception port-add 443 port (TCP).
(2) If blocked by the Security or acceleration tool, you can add 443 to the trust list in the interception record.
After rebooting, re-access via HTTPS.
Apache deployment SSL Certificate under Linux