Line 17: |
Line 17: |
| | | |
| http://forums.contribs.org/index.php/topic,37634.0.html | | http://forums.contribs.org/index.php/topic,37634.0.html |
| + | |
| + | The process requires that the crt & key files provided by your commercial certificate issuer, be copied to your sme server (by whichever means is most suitable for you eg place them in an ibay and copy using ssh/Putty). |
| + | Typically the appropriate file type would be copied to each of: |
| + | /home/e-smith/ssl.crt/ |
| + | /home/e-smith/ssl.key/ |
| + | |
| + | In the process of copying it is OK to overwrite the existing files if they are the same name. |
| + | It's also a good idea to delete any existing files in those folders, to keep your system clean. |
| + | |
| + | Then issue the following db commands so that sme server knows about these these "commercial certificate" files, rather than using the default "self signed" certificate files. |
| + | config setprop modSSL crt /home/e-smith/ssl.crt/{domain}.crt |
| + | config setprop modSSL key /home/e-smith/ssl.key/{domain}.key |
| + | |
| + | Note to replace {domain}.crt and {domain}.key with the actual names of your files eg |
| + | yourdomain.com.crt and yourdomain.com.key |
| + | |
| + | Follow the above commands with either: |
| + | signal-event console-save |
| + | signal-event reboot |
| + | or |
| + | signal-event post-upgrade |
| + | signal-event reboot |
| + | |
| + | When initially creating and ordering the certificate and supplying the domain name(s) to your chosen commercial supplier, you must include all domains that your server is hosting. sme server only supports one ssl certificate, so therefore to avoid errors for https access using any hosted domain name, the certificate must be created correctly. sme does not cater for multiple certificates for different domains, as it is not technically possible. |
| | | |
| ===Freely available certificates=== | | ===Freely available certificates=== |