Home > Others

How Apache builds HTTPS Virtual Host

Source: Internet
Author: User
Tags install openssl openssl sha1 ssl certificate
Developer on Alibaba Coud: Build your first app with APIs, SDKs, and tutorials on the Alibaba Cloud. Read more >

1. Create an SSL certificate

First you need to install the Openssl,linux system by default installed, if not installed with the following command:

sudo apt-get install OpenSSL  
sudo apt-get install Libssl-dev

To create a certificate:

Cd/etc/ssl/private  
sudo openssl req-new-x509-days 365-sha1-newkey rsa:1024-nodes-keyout demo.key-out demo.crt

Parameter description:

-x509 Display certificate and signing tool

Validity period of-days certificate

-SHA1 Certificate Encryption algorithm

-newkey rsa:1024 creates a new key,1024 indicating a public key length of 1024bits

Demo.key and DEMO.CRT are created after the command is executed

More parameter description can refer to: http://www.openssl.org/docs/apps/openssl.html

To create a step:

 root@ubuntu:/etc/ssl/private# sudo openssl req-new-x509-days 365-sha1-newkey rsa:1024-nodes-keyout Demo.key- Out DEMO.CRT generating a 1024 bit RSA private key ... ++++++ ... ++++++ writing new private key to ' dem '., ...   
O.key '-----You are about to is asked to enter information that'll be incorporated into your certificate request.  
What you are about to enter the What is called a distinguished Name or a DN. There are quite a few fields but can leave some blank for some fields There would be a default value, If you enter  
'. ', the field would be left blank. -----Country Name (2 letter code) [AU]:CN State or province name (full name) [SOME-STATE]:GD locality name (eg, CIT y) []:gz organization Name (eg, company) [Internet widgits Pty Ltd]:fdipzone. Ltd. organizational unit name (eg, section) []:test Common name (eg, YOUR Name) []:d emo.fdipzone.com Email A ddress []:fdipzone@gmail.com root@ubuntu:/etc/ssl/private#

Items to be filled in:

Country Name (2 letter code) [AU]: Country

This column more highlights: http://www.bianceng.cnhttp://www.bianceng.cn/webkf/tools/

State or province Name (full name) [Some-state]: Province

Locality Name (eg, city) []: Cities

Organization name (eg, company) [Internet Widgits Pty Ltd]: Corporate name

Organizational unit name (eg, section) []: Organizer Name

Common name (eg, YOUR name) []: Fill in the domain name

email address []: email Addresses

2. Create Virtual Host

<virtualhost *:443>  
    documentroot/home/fdipzone/demo  
    ServerName demo.fdipzone.com  
      
    <directory "/home/fdipzone/demo" >  
    allow from all  
    allowoverride all  
    options-indexes followsymlinks  
    </ Directory>  
      
    sslengine on  
    sslcertificatefile/etc/ssl/private/demo.crt  
    sslcertificatekeyfile/etc/ Ssl/private/demo.key  
    Sslciphersuite aes128-sha:high:medium:!anull:! MD5  
    Sslhonorcipherorder on  
</VirtualHost>

Open SSL engine and set the certificate used, port 443

Sslengine on

Sslcertificatefile/etc/ssl/private/demo.crt

Sslcertificatekeyfile/etc/ssl/private/demo.key

This article is an English version of an article which is originally in the Chinese language on aliyun.com and is provided for information purposes only. This website makes no representation or warranty of any kind, either expressed or implied, as to the accuracy, completeness ownership or reliability of the article or any translations thereof. If you have any concerns or complaints relating to the article, please send an email, providing a detailed description of the concern or complaint, to info-contact@alibabacloud.com. A staff member will contact you within 5 working days. Once verified, infringing content will be removed immediately.

Related Keywords:
how to host website on apache server how to host apache web server how to use apache to host website how to host website with apache apache rewrite https virtual host directive iis virtual host configuration

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

What's Trending
Top 10 Tags
datastax versions naming convention zookeeper client class definition md5 microsoft sql server 2005 data structures exception handling error handling
Top 10 Keywords
microsoft download center down wordpress address url site address url wordpress address url windows installer 4 0 download 302 not found web address url definition site address url wordpress db2 integer mac os installation step by step pdf abbreviation for return

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

Get Started for Free

  • Sales Support

    1 on 1 presale consultation

    Chat Contact Sales

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

    Open a Ticket

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.

    Learn More