| Previous | Next |
|---|
6. Install a certificate on a server -- Both cert.command and sign.command append the root certificate to the signed certificate, which makes configuring server software slightly simpler -- they avoid a third file (the CA certificate) which otherwise must be used with the server certificate. Specifically, Apache httpd is smart enough to pull the certificate and root certificate out of a single file specified, so long as they are in the correct order, e.g.,
SSLCertificateKeyFile /etc/pki/tls/private/secure.reppep.com.20080219.key
SSLCertificateFile /etc/pki/tls/certs/secure.reppep.com.20080219.crt
SSLCertificateChainFile /etc/pki/tls/certs/secure.reppep.com.20080219.crt