Latest revision as of 10:22, 9 May 2020

SSL Certificates

Generate the certificate request: OpenSSL_CSR_with_SAN

Once the certificate has been generated and the certificate downloaded from SSLForFree copy the certificate public and private keys.

cp certificate.crt /etc/pki/tls/certs/iRedMail.crt
cp private.key /etc/pki/tls/private/iRedMail.key

Reboot or restart all the different associated services. Reboot is easier here.

From linux shell

a2enmod ssl

@@ Line 1: / Line 1: @@
 = SSL Certificates =
-I'm not going into specific details here.  I use StartSSL certificates as they are free for private use.<br>
-'''Note''': I have noticed that if you try going to your WEB server and you get a blank page, I found this occurs when the SSL certificate does not match the certificate name or SAN on the certificate.
-Certificate path location.
+Generate the certificate request: [[OpenSSL_CSR_with_SAN]]
+Once the certificate has been generated and the certificate downloaded from SSLForFree copy the certificate public and private keys.
 <pre>
-/etc/pki/tls/certs/
+cp certificate.crt /etc/pki/tls/certs/iRedMail.crt
+cp private.key /etc/pki/tls/private/iRedMail.key
 </pre>
-<pre>
+Reboot or restart all the different associated services.  Reboot is easier here.
-openssl req -newkey rsa:2048 -nodes -keyout /etc/pki/tls/certs/sogo.key -out /etc/pki/tls/certs/sogo.csr
-</pre>
-<pre>
+[[Category : iRedMail]]
-vi /etc/httpd/conf.d/ssl.conf
-</pre>
+= Load SSL modules =
+From linux shell
 <pre>
-SSLCertificateFile /etc/pki/tls/certs/2_mail.myserver.com.crt
+a2enmod ssl
-SSLCertificateKeyFile /etc/pki/tls/certs/sogo.key
-SSLCACertificateFile /etc/pki/tls/certs/1_root_bundle.crt
 </pre>
 [[Category : iRedMail]]