Securing Faspex |
To set up a signed SSL certificate, follow these steps:
Order a signed SSL key from a certificate authority, and follow the key provider's instructions to generate and submit both of your private key and the Certificate Signing Request (CSR) to acquire the certificate. Here is a list of commonly used certificate authorities.
Locate your existing SSL certificates and replace them with the ones that acquired from the certificate authority. Your certificates are located in the following path:
Your certificate provider may require you to also install an Intermediate CA Certificate file. Copy the file to the following location:
/opt/aspera/common/apache/conf/server-ca.crt
Use a text editor to open the following file:
/opt/aspera/common/apache/conf/extra/httpd-ssl_template.conf
In the file, un-comment the following line by removing the "#":
SSLCertificateChainFile "${path}/conf/server-ca.crt"
Use the command to regenerate Apache's configuration file to apply the new SSL certificates. This command will prompt you to restart Apache, answer y (yes):
$ asctl apache:generate_config