SharaaEsper · January 12, 2015 23:11
diff --git a/sslishard.txt b/sslishard.txt
 Split certs into site.com.crt and site.com.ca.crt 

 # ls ssl/
 tmpkey  www.<DOMAIN>.com.ca.crt  www.<DOMAIN>.com.crt  www.<DOMAIN>.com.csr  www.<DOMAIN>.com.key

 .ca.crt, .crt and .key are the needed files, the rest can be removed. 

 In /etc/httpd/conf.d/ssl.conf I commented out the default vhost (Starting with <Virutalhost> and through the rest of the file)
 In /etc/httpd/conf.d/ssl.conf I added a NameVirtualHost directive. THis lets SNI work if you get more SSL sites in the future. 

 NameVirtualHost <IPOFSERVER>:443

 In /etc/httpd/conf.d/vhosts-dti.conf I added a new vhost.

 SSLCertificateFile <-- this is the certificate that said 'web certificate' in the original file
 SSLCertificateChainFile <-- This is the bundle/intermediary cert
 SSLCertificateKeyFile <--- This is the key you first generated

 Verify syntax with httpd -t, after reporting ok bounce apache via service httpd restart
	Split certs into site.com.crt and site.com.ca.crt

	# ls ssl/
	tmpkey www.<DOMAIN>.com.ca.crt www.<DOMAIN>.com.crt www.<DOMAIN>.com.csr www.<DOMAIN>.com.key

	.ca.crt, .crt and .key are the needed files, the rest can be removed.

	In /etc/httpd/conf.d/ssl.conf I commented out the default vhost (Starting with <Virutalhost> and through the rest of the file)
	In /etc/httpd/conf.d/ssl.conf I added a NameVirtualHost directive. THis lets SNI work if you get more SSL sites in the future.

	NameVirtualHost <IPOFSERVER>:443

	In /etc/httpd/conf.d/vhosts-dti.conf I added a new vhost.

	SSLCertificateFile <-- this is the certificate that said 'web certificate' in the original file
	SSLCertificateChainFile <-- This is the bundle/intermediary cert
	SSLCertificateKeyFile <--- This is the key you first generated

	Verify syntax with httpd -t, after reporting ok bounce apache via service httpd restart