comodo.sslinformationcenter.com. EV SSL SGC, EV SSL, EV SSL Multi-Domain, InstantSSL, IntranetSSL, Украинский центр сертификации сайтов и верификации компаний Веб Траст Украина WebTrust

Украинский центр сертификации сайтов и верификации компаний Веб Траст Украина Ukrainian site certification and company verification Center, SSL, UA SSL сертификаты CodeSigning Верификация компаний

Добро пожаловать в компанию Веб Траст Ураина

+A | R | -A | |-| |<->|
* Грн. * Руб. Дол. Евро ( $1=8.6UAH )

Сертифіковано в Україні

General FAQ

EV Certificate FAQ

Content Verification FAQ

Unified Communications FAQ

Install SSL for Apache

Step by step instructions to set up SSL on your Apache webserver

There are four stages to setting up SSL on your Apache webserver:

1. Create a Certificate Signing Request (CSR)
2. Apply online
3. Installing your Certificate
4. Displaying your Secure Site Seal

1. Generating a Certificate Signing Request (CSR)

A CSR is a file containing your certificate application information, including your Public Key. Generate your CSR and then copy and paste the CSR file into the webform in the enrollment process:

Generate keys and certificate:

To generate a pair of private key and public Certificate Signing Request (CSR) for a webserver, "server", use the following command :

openssl req -new -nodes -keyout myserver.key -out server.csr

This creates two files. The file myserver.key contains a private key; do not disclose this file to anyone. Carefully protect the private key.

In particular, be sure to backup the private key, as there is no means to recover it should it be lost. The private key is used as input in the command to generate a Certificate Signing Request (CSR).

You will now be asked to enter details to be entered into your CSR
.
What you are about to enter is what is called a Distinguished Name or a DN.

For some fields there will be a default value, If you enter '.', the field will be left blank.

-----
Country Name (2 letter code) [AU]: GB
State or Province Name (full name) [Some-State]: Yorks
Locality Name (eg, city) []: York
Organization Name (eg, company) [Internet Widgits Pty Ltd]: MyCompany Ltd
Organizational Unit Name (eg, section) []: IT
Common Name (eg, YOUR name) []: mysubdomain.mydomain.com
Email Address []:

Please enter the following 'extra' attributes to be sent with your certificate request

A challenge password []:
An optional company name []:
-----

Use the name of the webserver as Common Name (CN). If the domain name is mydomain.com append the domain to the hostname (use the fully qualified domain name).

The fields email address, optional company name and challenge password can be left blank for a webserver certificate.

Your CSR will now have been created. Open the server.csr in a text editor and copy and paste the contents into the online enrollment form when requested.

2. Applying for your Instant SSL Certificate Online

Visit www.instantssl.com and select your SSL Certificate product type. You will be required to submit the CSR into a webform. When you make your application, make sure you include the CSR in its entirety into the appropriate section of the enrollment form. When you view your CSR it will appear something like:

-----BEGIN NEW CERTIFICATE REQUEST-----
MIIDVjCCAr8CAQAwezEdMBsGA1UEAxMUd3d3Lm15ZG9tYWlubmFtZS5jb20xDDAK
BgNVBAsTA1dlYjEaMBgGA1UEChMRWW91ciBDb21wYW55IE5hbWUxEDAOBgNVBAcT
B015IENpdHkxETAPBgNVBAgTCE15IFN0YXRlMQswCQYDVQQGEwJVUzCBnzANBgkq
hkiG9w0BAQEFAAOBjQAwgYkCgYEAuev9LnSRX/6u5Iz7ckpt0IG4DwnAF/lsksJ0
n5r9w1EK9Np5/OJEt72r5es3nie5rTKo3O4yvSLovkS0vqT+iOlEZvl5B4mXTEPw
fDLjEcwcNb8SCJ4ArUAhHKJWHDKJHDKDA6587568gfhjfjFHGFHFhsgGHJGJjhhj
HFD^TGFrYTrYTrfGHI&DHJKDHkjwjkkgAgcwCgYIKoZIhvcNHKJHFrytDETR$456
AwcwEwYDVR0lBAwwCgYIKwYBBQUHAwEwgf0GCisGAQQBgjcNAgIxge4wgesCAQEe
WgBNAGkAYwByAG8AcwBvAGYAdAAgAFIAUwBBACAAUwBDAGgAYQBuAG4AZQBsAC67
QwByAHkAcAB0AG8AZwByAGEAcABoAGkAYwAgAFAAcgBvAHYAaQBkAGUAcgOBiQCq
EH3QppP7Ewuz6oh4EUXMbKdqieAcbQ52iFSXqQ/n1xAtEpVUfjIM3exr42EhyYlr
lV7cpUKbSr/eQ6c/hjiUi17EpvleBBV0BkFWsWzJoShx0BmOKvDnKINNQC3Jya+M
N/t9axyuCwdUYJiLglNnjcBLSxL/6hovXNDLuCLgMAAAAAAAAAAAMA0GCSqGSIb3
DQEBBQUAA4GBAEQT6Pwj0BHeOUw+AR0GAT30q+1OYNkr341CouMC6M7KqlKgVZDV
tRes4uz1Yf8+WRCutVvDByrey+CdgzJzHvHqS6lAj2swx8QadclVWOkZfH//k/KE
1MiOEb6c3Mp1ECorjIm+HRN20Qga+dnDBOowyRYn7Vz+NKar88mrJwk/
-----END NEW CERTIFICATE REQUEST-----

Be sure to copy the CSR text in its entirety into the application form, including the:

-----BEGIN CERTIFICATE REQUEST----- and -----END CERTIFICATE REQUEST-----

3. Installing your Instant SSL Certificate

Step one: Copy your certificate to file

You will receive an email from Comodo Security Services with the certificate in the email (yourdomainname.crt). When viewed in a text editor, your certificate will look something like:

Copy your Certificate into the directory that you will be using to hold your certificates. In this example we will use /etc/ssl/crt/. Both the public and private key files will already be in this directory. The private key used in the example will be labelled private.key and the public key will be yourdomainname.crt.

It is recommended that you make the directory that contains the private key file only readable by root.

Step two: Install the Intermediate Certificates

You will need to install the chain certificates (intermediates) in order for browsers to trust your certificate. As well as your SSL certificate (yourdomainname.crt) two other certificates, named GTECyberTrustRootCA.crt and ComodoClass3SecurityServicesCA.crt, are also attached to the email from Comodo Security Services.

Apache users will not require these certificates. Instead you can install the intermediate certificates using the following 'bundle' method. In the Virtual Host settings for your site, in the httpd.conf file, you will need to complete the following:

1. Copy the below ca-bundle file to the same directory as httpd.conf (this contains all of the CA certificates in the chain).

2. Add the following line to SSL section of the httpd.conf (assuming /etc/httpd/conf is the directory to where you have copied the ca.txt file). if the line already exists amend it to read the following:

SSLCACertificateFile /etc/httpd/conf/ca-bundle/ca.txt

If you are using a different location and certificate file names you will need to change the path and filename to reflect your server.

The SSL section of the updated httpd config file should now read similar to this example (depending on your naming and directories used):

SSLCertificateFile /etc/ssl/crt/yourdomainname.crt

SSLCertificateKeyFile /etc/ssl/crt/private.key

SSLCACertificateFile /etc/httpd/conf/ca-bundle/ca_new.txt

Save your httpd.conf file and restart Apache.

4. Displaying your Secure Site Seal

As a valued Instant SSL customer we encourage you to display the Instant SSL secure site seal to help promote your secure site to customers. The secure site seal is free to all Instant SSL customers.

Install SSL for Microsoft IIS 5x webserver

Step by step instructions to set up SSL on your Microsoft IIS 5x webserver

There are four stages to setting up SSL on your Microsoft IIS 5x webserver:

1. Create a Certificate Signing Request (CSR)
2. Apply online
3. Installing your Certificate
4. Displaying your Secure Site Seal

1. Generating a Certificate Signing Request (CSR)

A CSR is a file containing your certificate application information, including your Public Key. Generate your CSR and then copy and paste the CSR file into the webform in the enrollment process:

Generate keys and Certificate Signing Request:

Select Administrative Tools from the Start Menu
Start Internet Services Manager
Open the Properties window for the website the CSR is for. You can do this by right clicking on the Default Website and selecting Properties from the menu
Open Directory Security by right clicking on the Directory Security tab
Click Server Certificate. The following Wizard will appear:
Click Create a new certificate and click Next.
Select Prepare the request now, but send it later and click Next.
Provide a name for the certificate, this needs to be easily identifiable if you are working with multiple domains. This is for your records only.
If your server is 40 bit enabled, you will generate a 512 bit key. If your server is 128 bit you can generate up to 1024 bit keys. We recommend you stay with the default of 1024 bit key if the option is available. Click Next
Enter Organisation and Organisation Unit, these are your company name and department respectively. Click Next.
The Common Name field should be the Fully Qualified Domain Name (FQDN) or the web address for which you plan to use your Certificate, e.g. the area of your site you wish customers to connect to using SSL. For example, an Instant SSL Certificate issued for comodo.net will NOT be valid for secure.comodo.net. If the web address to be used for SSL is secure.comodo.net, ensure that the common name submitted in the CSR is secure.comodo.net. Note that preceeding the FQDN with is NOT necessary. Click Next.
Enter your Country, State and City. Click Next.
Enter a filename and location to save your CSR. You will need this CSR to enroll for your Certificate. Click Next.
Check the details you have entered. If you have made a mistake click Back and amend the details. Be especially sure to check the domain name the Certificate is to be Issued To. Your Certificate will only work on this domain. Click Next when you are happy the details are absolutely correct.

2. Applying for your Instant SSL Certificate Online

Be sure to copy the CSR text in its entirety into the application form, including the:

-----BEGIN CERTIFICATE REQUEST----- and -----END CERTIFICATE REQUEST-----

3. Installing your Instant SSL Certificate

Installing the Root & Intermediate Certificates

When you Instant SSL Certificate has been issued you will receive 3 Certificates via email from Comodo Security Services. Save these Certificates to the desktop of the webserver machine, then:

Click the Start Button then select Run and type mmc
Click File and select Add/Remove Snap in
Select Add, select Certificates from the Add Standalone Snap-in box and click Add
Select Computer Account and click Finish
Close the Add Standalone Snap-in box, click OK in the Add/Remove Snap in
Return to the MMC

A. To install the GTECyberTrustRoot Certificate:

Right click the Trusted Root Certification Authorities, select All Tasks, select Import.
Click Next.
Locate the GTECyberTrustRoot Certificate and click Next.
When the wizard is completed, click Finish.

B. To install the ComodoSecurityServicesCA Certificate:

Right click the Intermediate Certification Authorities, select All Tasks, select Import.
Complete the import wizard again, but this time locating the ComodoSecurityServicesCA Certificate when prompted for the Certificate file.
Ensure that the GTECyberTrustRoot certificate appears under Trusted Root Certification Authorities
Ensure that the ComodoSecurityServicesCA appears under Intermediate Certification Authorities

C. Installing your SSL Certificate

Select Administrative Tools
Start Internet Services Manager

Open the properties window for the website. You can do this by right clicking on the Default Website and selecting Properties from the menu.
Open Directory Security by right clicking on the Directory Security tab
Click Server Certificate. The following Wizard will appear:
Choose to Process the Pending Request and Install the Certificate. Click Next.
Enter the location of your certificate (you may also browse to locate your certificate), and then click Next.
Read the summary screen to be sure that you are processing the correct certificate, and then click Next.
You will see a confirmation screen. When you have read this information, click Next.
You now have a server certificate installed.

Important: You must now restart the computer to complete the install

Open the Properties of the default website and ensure that SSL port contains the number 443 (it should default to this number automatically). You may want to test the Web site to ensure that everything is working correctly. Be sure to use when you test connectivity to the site.

4. Displaying your Secure Site Seal

As a valued Instant SSL customer we encourage you to display the Instant SSL secure site seal to help promote your secure site to customers. The secure site seal is free to all Instant SSL customers

$\"".TITLE."$ SSL сертификаты VeriSign GeoTrust Thawte Comodo GlobalSign TrustWave покупка SSL...

издатель: Украинский центр сертификации сайтов и верификации компаний Веб Траст Украина WebTrust - Ukraine тематика: , , , comodo.sslinformationcenter.com comodo.sslinformationcenter.com. EV SSL SGC, EV SSL, EV SSL Multi-Domain, InstantSSL, IntranetSSL,

Магазин сертификатов Thawte | SSL Сертификаты с внешней верификацией | Магазин VeriSign SSL сертификатов