This post has already been read 625 times!
GeoTrust is a globally trusted SSL certificate authority that is owned by Symantec, which acquired the brand in 2010. They offer SSL certificates to secure online transactions with 256-bit encryption as well as to provide website authentication to maximize trust for your business.
GeoTrust SSL certificates will assist businesses to get quick online transaction security along with secured site seal to ensure trusted identity on the web, which is most important for every organization needs. GeoTrust offers various types of SSL certificates including QuickSSL Premium, QuickSSL Premium with DV, True BusinessID Wildcard, QuickSSL Premium Wildcard, True BusinessID with OV, True BusinessID with EV and UCC/SAN SSL to suite the customer’s needs.
How to install GeoTrust QuickSSL Premium Certificate on Apache Sever?
Apache is free, reliable, secure and open-source cross platform web server. Apache is most widely used and estimated to server 46% of all active websites in the world. Apache server is developed and maintained by Apache software foundation. Apache supports various features include SSL (Secure Sockets Layer) and TLS (Transport Layer Security) support, a URL rewriting module, custom log files and filtering support to meet the needs of many different environments.
To set up your QuickSSL Premium certificate on Apache, ensure following process have been completed:
- Buy/renew GeoTrust QuickSSL Premium certificates from either its official GeoTrust website or look for authorized SSL resellers such as :cheapsslshop.com, where you can get SSL certificates at less price yearly basis.
- Generate CSR (Certificate Signing Request) on Apache using OpenSSL utility
- Save the generated CSR and private key (2048-bit) with extension .key file on the server
- Apply for GeoTrust QuickSSL Premium certificate issuance after completion of order.
- Submit SSL issuance documents required by Geo Trust.
For an SSL certificate to be installed and work correctly, three components are required
1) SSL certificate
2) Private Key
3) Root and Intermediate CA certificate files (CA bundle)
You will receive GeoTrust QuickSSL Premium certificate via email, once GeoTrust team will verify all your submitted documents. Check your email, download certificate zip file, and extract on your Apache server directory. A zip file includes SSL certificate, GeoTrust Intermediate Certificate files (CA bundle).
GeoTrust uses root and intermediate certificate files (CA bundle) to enhance the security of SSL certificate. It is essential to extract these files to server properly that ensures the license is fully trusted by all browsers and prevents SSL errors from appearing when users visit the website.
To set up an intermediate certificate files, a link will be provided where one will be required to select the certificate type and click over it following instruction is given to download the certificate.
You can either download root or intermediate certificate filed (CA bundle) by clicking on file or copy the encrypted content and save file as “intermediate.crt”.
The Intermediate certificate files (CA bundle) should be saved into a .crt directory because the path and the filename the document was saved in will be needed for reference when updating the Apache configuration file.
After installation of the certificate, follow the naming convention of Apache and rename the document file name.
Save the server certificate to the Apache directory in which you plan to store your documents. The path and the file name the document was kept in will need to be referenced when updating Apache configuration file.
Configure SSL on Apache Server:
- You will have GeoTrust SSL certificate configuration file with names like conf and SSL.conf in the Apache web directory. You needs to update the HTTPd configuration file. So, Open the configuration file with text editor and the virtual host settings will be found which should contain three directives and if not present in the file they should be added.
- Locate the SSL <VirtualHost> container associated with your certificate and verify that VirtualHosts should be configured as follows:
When using a different location and certificate file names, you will need to change the path and file name to reflect your server. In some instances, an Apache contains both a httpd.conf and ssl.conf file, one needs to amend them with the right directives and should not be entered as there will be a conflict and Apache may not start.
- Save changes and exit from editor.
- Check the file for any syntax errors using apachectl configtest
- Restart your Apache server
Now, check that Apache successfully started.
Once the SSL certificate is installed, you are required to use the SSL certificate installation checker to verify SSL installation.