Create and Enable SSL for website
This tip provides basic instruction for searching for a cheap SSL provider, creating SSL certificate that works with Apache 2,
and finally enabling your SSL certificate with tomcathostingservice.com
Purchase SSL Certificate
Go to Google seach and type following keywords: cheap SSL. It usually returns with a list of discounts
and onsale SSL certificates. As this article is being written the Godaddy has SSL certificate on-sale
for $12.99/year or $12.67/year at the register.com. Don't have to buy expensive SSL certificate if one just
want to encrypt the data over the internet and is recognized by browsers. Most people recommend to buy at least
3 years so that one does not have to deal with recreating certificates every year or renewing the certificate which is
more expensive.
Create SSL certificate for Apache 2
This instruction is strictly for creating certificate for
Apache 2. For other web server please following
instructions from SSL provider or other web sites
- First create a RSA private key for your Apache server (will be Triple-DES encrypted and PEM formatted):
openssl genrsa -des3 -out [www.yourdomainname.com].key 2048.
- Create a Certificate Signing Request (CSR) with the server RSA private key (output will be PEM formatted):
openssl req -new -key [www.yourdomainname.com].key -out [www.yourdomainname.com].csr
Make sure to enter FQDN ("Fully Qualified Domain Name") of the server when OpenSSL prompts you
for the "CommonName", i.e. when you generate a CSR for a website which will be
later accessed via https://www.yourdomainname.com/, enter "www.yourdomainname.com" when asked.
- Following instructions provided by SSL provider and
submit the created CSR file to the SSL provider site. You should receive a
certificate file from the provider.
Add a unique static IP address for your site and your SSL Certificate
In order to enable SSL to work on different sites running from the same Apache server,
different static IP adddresses are required or your application needs to accept a port different from standard port 443. Unfortunately,
due to recent changes by the ISP top level company we no longer offer static IP addresses for private tomcat hosting as we reserve
static IP addresses for dedicated server. We do apologize for this inconvenience.
Enable SSL with tomcathostingservice.com
- Log on to your online account
- Go to [Control Panel]
- Select [Update domain name and add virtual host]
- Check checkbox named SSL
- Copy both your private keys and certificate into private keys and certificate text field
respectively. Make sure there is no extra space when copy and paste the certificate to the text fields
- Should received a confirmation that says the virtual hosting is successful. You should be able to access your site
through https protocol
2244 Old Mill Carrollton, TX 75007 (425) 367-8702
Copyright @ 2008 Tomcat Hosting Services. All
Rights Reserved.