Install SSL Certificate on Apache

You can find instructions for installing an SSL certificate on an Apache web server below.

Before You Start

Before you start, please make sure you have downloaded your certificate files.

After downloading your certificate, you should have the following certificate files:

  • certificate.crt
  • cabundle.crt
  • privatekey.pem

Step 1: Upload Certificate to Server

First, copy your certificate files to the directory where you keep your certificate and key files. Typically, this directory is /etc/ssl/ for your certificate.crt and cabundle.crt files, and /etc/ssl/private/ for your privatekey.pem file.

Step 2: Adjust Configuration File

Next, you will need to find the Apache configuration file on your server. Depending on the server and OS version you are running on, the configuration file is stored in different directories. Typically, you could search the directories etc/httpd/, /etc/apache2/ or /etc/httpd/conf.d/ssl.conf for files named httpd.conf, apache2.conf or ssl.conf.

Once the Apache configuration file is located, you will need to configure the virtual host section of your website. Before you do so, please make sure to create a backup of your current *.conf file. This way, you will be able to undo any changes in case something goes wrong.

A typical Virtual Host file looks like the file below:

<VirtualHost [IP ADDRESS]:443>
ServerAdmin admin@domain.com
DocumentRoot /var/www/
ServerName www.domain.com
ErrorLog /www/home/logs/error_log
SSLEngine on
SSLCertificateFile /etc/ssl/certificate.crt
SSLCertificateKeyFile /etc/ssl/privatekey.pem
SSLCertificateChainFile /etc/ssl/cabundle.crt
</VirtualHost>

The part above starting with SSLEngine on is the one you will need to add or edit based on the file paths your certificate files are located in. Please make sure the attributes in bold don't have a "#" (comment) prepended; if they do, please remove that symbol to uncomment them.

As mentioned above, you will need to change the file names to match your certificate files and their location on the server:

  • SSLCertificateFile: This is your primary SSL certificate file (certificate.crt)
  • SSLCertificateChainFile: This is your CA-Bundle file (cabundle.crt)
  • SSLCertificateKeyFile: This is your private key file (privatekey.pem)

Next, save your Apache configuration file and restart your server using one of the commands below:

  • apachectl stop
  • apachectl start
  • apachectl restart

In case something goes wrong along the way, please rest assured that you will be able to revert your Apache configuration file using the backup you have created earlier in the process. This way, you will be able to start over again.

Go to SSL Zen Plugin and click on the Next button on Step 3. Our plugin will automatically detect if you have installed the SSL certificate correctly. If you have, click on the Next button in Step 4 and we will replace your website http url with https.

Congratulations, your site has now been secured using your new SSL certificate!

Did this answer your question? Thanks for the feedback There was a problem submitting your feedback. Please try again later.