encrypting and authenticating the Web site (HTTPS) Web site security level high to Low:1: CA-Signed server certificate (HTTPS, green, CA certificate required from CA authority to apply, certificate for server purpose type) 2: Self-signed server certificate (browser-displayed self-signed HTTPS is red) 3: No certificate, Direct HTTP, the request may be intercepted by the network Man-in-the-middle SSL certificate is bound domain name, server replacement IP address does not have any relationship, as long as the domain name is unchanged, re-resolve to the new IP address, the original SSL certificate can also be used. However, if the SSL certificate you requested is for an IP address, the server changed its IP address and the original SSL certificate could not be used. So, depending on your business situation, you need to decide whether to request a certificate for your website domain name or IP address. 1: Create a CSR (certificate signing Request certificate signing requests) to manage your own certificates (see https://www.digicert.com/csr-creation-apache.htm https://www.digicert.com/easy-csr/openssl.htm) 2:apache Server SSL Certificate installation a:copy. crt files into a private folder, typically only the root user has permission B: Edit httpd-ssl.conf file Continue tomorrow: Reference https://www.digicert.com/ssl-certificate-installation-apache.htm
HTTPS & Deploy CA