To install the SSL digital certificates to Apache on Linux, you perform the following:
1. Unzip attachments will be two files certificate.crt and cabundle.crt
2. Download this file to the server two, included in the directory / usr / local / ssl / certificate (this is the eve folder you created to contain the CSR and private key).
3. Login to the root account by SSH
4. At this point in the directory /usr/local/ssl/certificate will have 3 file: private.key, certificate.crt, cabundle.crt. In this folder will be added fiile certreq.csr however you do not need this file anymore.
5. Then you open the Apache configuration file (usually /etc/httpd/conf/httpd.conf or /etc/httpd/conf.d/ssl.conf or /etc/httpd/conf/extra/httpd-ssl.conf). Using vi to find and edit the contents of the following:
SSLCertificateFile /usr/local/ssl/certificate/certificate.crt
SSLCertificateKeyFile /usr/local/ssl/certificate/private.key
SSLCACertificateFile /usr/local/ssl/certificate/cabundle.crt
Depending on the configuration of the Apache server, you will adjust the above line in the main configuration section, or add VirtualHost configuration.
6. Once the configuration is complete, you save and restart Apache:
service httpd restart
7. Open port 443 on the firewall (firewall If you use software such as iptables, you can find the config file at: / etc / sysconfig / iptables)
If you want to configure OCSP stapling for Apache, you can refer to the following guidelines: Guidelines OCSP stapling configurations for Apache
After successful installation, you can check the cert was install correctly or not by following tools: https://cryptoreport.websecurity.symantec.com/checker/views/certCheck.jsp
You can see Backup SSL on Apache Linux.
