aleangelico
05-01-2008, 04:38 PM
I was dealing with this SSL certificate issue for a while and there is a lot of information, but sometimes confuse. This are the steps I followed:
I bought a QuickSSL certificate from here (https://ssl.theplanet.com/?SslType=QuickSSL). There are many different certificates. This is the cheapest one (50 bucks from this site but more than a hundred from GeoTrust). It only certifies that this site is the site it says, but nothing about the company or the owner. I use this for encrypting forms, so it works for me.
So:
1. Buy the certificate. You don't need to contact Futurequest yet.
2. Generate the CSR. You can do this by your own!, no need to pay. They will send you instructions of commands you have to run in a futurequest session (telnet, ssh), for example:
2.1 Create a private key: openssl genrsa -out domainname.key 1024
2.2 Create a CSR: openssl req -new -key domainname.key -out domainname.csr
2.3 Submit your CSR (is a text file you can copy an paste in a form)
3. After receiving the email from the Certificate Company, save it to a text file.
4. Now, contact Futurequest for adding (buying) the SSL service. Is the "Secure Server (your certificate)" option
4.1 Fill the form. In the second one:
Add the content of the CRT file (the text you save in step 3)
add the content of the KEY you generated in the step 2.1
If you didn't set any password, leave it blank (this is my case)
Subdomain: they offer https://secure.mydomain.com, I changed to https://www.mydomain.com. I'll explain how this work below
I don't remember exactly now but i think they ask you about the folder you will be using. I let the proposed "Secure_Server"
That's it!
HOW THIS WORKS.
Now, if I want to have a page "secure", I just copy the page to /big/dom/xmydomain/www/Secure_Server. Apache is going to look for any page you access using the https:// prefix in this folder.
The Secure_Server is not visible from the browser.
For example, in my domain :
http://www.ednahotel.com/index.html -> retrieves the /big/dom/xmydomain/www/index.html page
https://www.ednahotel.com/index.html -> retrieves the /big/dom/xmydomain/www/Secure_Server/index.html page
But the only difference for the browser is https:// instead of http://
NOTE: If you are ask for the server you are using, is the "Apache + MODSSL" option. This information is here (http://service.futurequest.net/index.php?_a=knowledgebase&_j=questiondetails&_i=557&nav=+%26gt%3B+%3Ca+href%3D%27index.php%3F_a%3Dknowledgebase%26_j% 3Dsubcat%26_i%3D42%27%3EE-commerce+%26+Secure+Certs%3C%2Fa%3E)
Thanks to hobbes, Matt and Jeff for their help!
I hope this helps
Bye
Alex
PS: I'm far from being an expert so if any information is wrong, please post the corrections.
I bought a QuickSSL certificate from here (https://ssl.theplanet.com/?SslType=QuickSSL). There are many different certificates. This is the cheapest one (50 bucks from this site but more than a hundred from GeoTrust). It only certifies that this site is the site it says, but nothing about the company or the owner. I use this for encrypting forms, so it works for me.
So:
1. Buy the certificate. You don't need to contact Futurequest yet.
2. Generate the CSR. You can do this by your own!, no need to pay. They will send you instructions of commands you have to run in a futurequest session (telnet, ssh), for example:
2.1 Create a private key: openssl genrsa -out domainname.key 1024
2.2 Create a CSR: openssl req -new -key domainname.key -out domainname.csr
2.3 Submit your CSR (is a text file you can copy an paste in a form)
3. After receiving the email from the Certificate Company, save it to a text file.
4. Now, contact Futurequest for adding (buying) the SSL service. Is the "Secure Server (your certificate)" option
4.1 Fill the form. In the second one:
Add the content of the CRT file (the text you save in step 3)
add the content of the KEY you generated in the step 2.1
If you didn't set any password, leave it blank (this is my case)
Subdomain: they offer https://secure.mydomain.com, I changed to https://www.mydomain.com. I'll explain how this work below
I don't remember exactly now but i think they ask you about the folder you will be using. I let the proposed "Secure_Server"
That's it!
HOW THIS WORKS.
Now, if I want to have a page "secure", I just copy the page to /big/dom/xmydomain/www/Secure_Server. Apache is going to look for any page you access using the https:// prefix in this folder.
The Secure_Server is not visible from the browser.
For example, in my domain :
http://www.ednahotel.com/index.html -> retrieves the /big/dom/xmydomain/www/index.html page
https://www.ednahotel.com/index.html -> retrieves the /big/dom/xmydomain/www/Secure_Server/index.html page
But the only difference for the browser is https:// instead of http://
NOTE: If you are ask for the server you are using, is the "Apache + MODSSL" option. This information is here (http://service.futurequest.net/index.php?_a=knowledgebase&_j=questiondetails&_i=557&nav=+%26gt%3B+%3Ca+href%3D%27index.php%3F_a%3Dknowledgebase%26_j% 3Dsubcat%26_i%3D42%27%3EE-commerce+%26+Secure+Certs%3C%2Fa%3E)
Thanks to hobbes, Matt and Jeff for their help!
I hope this helps
Bye
Alex
PS: I'm far from being an expert so if any information is wrong, please post the corrections.