SSL 247 are authorised strategic resellers of Verisign,GlobalSign, Geotrust and RapidSSL products

Apache + Raven

Installing your SSL Certificate / Web Server Certificate / Secure Server Certificate from ssl247.co.uk

Firstly when your issuance email arrives you will have two certificates in the email - your server certificate and a UTN chained certificate.

Copy the UTN chained certificate into a text editor such as notepad and save as chain.txt.
Copy your web server certificate into a text editor such as notepad and save as yourdomain.cert.

Start the Raven PKI Certificate Manager, using the command:
/usr/local/raven/bin/ravenctl

Install the UTN chained certificate

1. Locate and open the ca-bundle.cert file in the [install-prefix]/raven/module/pki/certs directory.
2. Copy the entire chain.txt, including the "- - - - -BEGIN CERTIFICATE - - - - -" and "- - - - -END CERTIFICATE - - - - -" lines, and everything in between.
3. Paste the chain.txt into the ca-bundle.cert file. It can be entered at the beginningor end of the file, or between existing entries. There is no need to add any other data to match the format of existing entries.
4. Save and close the ca-bundle.cert file.

Install your web server certificate

1. Choose Install CA Signed Certificate

You will be prompted for the location of your web server certificate. Identify the location and the name (yourdomain.cert) of your web server certificate file. The certificate will be installed in the following directory:
/usr/local/raven/module/pki/certs/

Configure the httpsd.conf file

1. Open the httpsd.conf file in a text editor and ensure that the virtual host that you purchased the certificate for has the following directives and that they point to the correct files:

   SSLCertificateFile /usr/local/raven/module/pki/certs/yourdomain.cert
   SSLCertificateKeyFile /usr/local/raven/module/pki/keys/domainname.key
   SSLCACertificateFile /usr/local/raven/module/pki/certs/ca-bundle.cert

2. Save the HTTPDS.CONF file

3. Restart the server: /usr/local/apache/bin/httpsdctl restart

Test your certificate by using a web browser to connect to your server. Use the https protocol directive (e.g. https://your server/) to indicate you wish to use secure HTTP.

Note: The padlock icon on your browser will be displayed in the locked position if your certificates are installed correctly and the server is properly configured for SSL.