Use the following procedure to set up your recommended certification distribution.
To set up the recommended certification distribution:
ssl_certificate is the primary certificate combined with the intermediate certificate that you made in a previous step; for example, your_domain_name.crt: /etc/ssl/certs/stratus-orchestrator.crt
ssl_certificate_key is the key file generated when you created the CSR: /etc/ssl/private/stratus-orchestrator.key
Make a copy of the existing non-secure server module, and paste it below the original.
Then add the lines in red below:
server {
listen 443;
ssl on;
ssl_certificate /etc/ssl/certs/stratus-orchestrator.crt;
ssl_certificate_key /etc/ssl/private/stratus-orchestrator.key;
server_name your.domain.com;
access_log /var/log/nginx/nginx.vhost.access.log;
error_log /var/log/nginx/nginx.vhost.error.log;
location / {
root /home/www/public_html/your.domain.com/public/;
index index.html;
}
}
Restart Nginx using the following command:
sudo /etc/init.d/nginx restart
Troubleshooting
Open a web browser and visit your site using https. Stratus recommends testing with both Internet Explorer and Firefox, because Firefox generates a warning if your intermediate certificate is not installed. You should not receive any browser warnings or errors.
References
For additional information, refer to:
https://www.digicert.com/ssl-certificate-installation-nginx.htm
http://wiki.nginx.org/NginxHttpSslModule
Product Support and Downloads
|
About Stratus
|
Product Documentation (PDF Format)
|
About Help
|