Question

Can someone please help us apply our ready (added) Wildcard SSL for our website??? https?

Posted April 17, 2020 123 views
UbuntuSecurity

Our developer is no longer available. Asking for some help! We need an SSL (wildcard) added for our website (simple WP/woo) site. It’s purchased, Godaddy helped us create the files and even added to “Security” section (add certificate) in our “droplet”. Thats as far as we’ve gotten. We don’t know how to apply the SSL across all our URLs. This is overkill for us. Can’t see anywhere to add the SSL and apply it. Not familiar with “CONSOLE” or the language within console to apply it. Would GREATLY appreciate any assistance! Please :) This is a Godaddy Wildcard SSL all set and ready.

These answers are provided by our Community. If you find them useful, show some love by clicking the heart. If you run into issues leave a comment, or add your own answer to help others.

×
1 answer

Hi @newepec,

I’ll be able to guide you to create the certificate however you’ll first need to tell me a couple of things about your Droplet like what WebService you are running. I know you won’t be able to tell me like that so, I’ve prepared a couple of commands which you’ll need to run on your droplet to get that one out.

Firstly, login to your droplet via SSH:

ssh root@YourIpAddress

Once you are in, type in the following command and paste the output here

netstat -tulpen | grep '80\|443'

Once you provide me with output, I’ll be able to point you further.

Regards,
KDSys

  • tcp6 0 0 :::8080 :::* LISTEN 0 11873 1324/apache2
    tcp6 0 0 :::80 :::* LISTEN 0 11865 1324/apache2
    tcp6 0 0 :::443 :::* LISTEN 0 11877 1324/apache2

    Here is what I pulled!

    • Hi @newepec,

      Okay, so you are using Apache. Assuming your server is running on the default virtual host configuration file, /etc/apache2/sites-available/000-default.conf, use these commands to to make a copy:

      cd /etc/apache2/sites-available
      
      cp 000-default.conf example.com-ssl.conf
      

      Please make sure to change example.com with the actual domain you want to use.

      Once you have created the file, open it

      nano 000-default.conf
      

      Find the <VirtualHost *:80> entry and modify it so your web server will listen on port 443:

      <VirtualHost *:443>
      

      Then add the ServerName directive, if it doesn’t already exist (substitute your domain name here):

      ServerName example.com
      

      Then add the following lines to specify your certificate and key paths (substitute your actual paths here):

      SSLEngine on
      SSLCertificateFile /var/www/cert/example.com.crt
      SSLCertificateKeyFile /var/www/cert/example.com.key
      

      If you are using Apache 2.4.8 or greater, specify the CA intermediate bundle by adding this line (substitute the path):

      SSLCACertificateFile /home/sammy/intermediate.crt
      

      Save and exit.

      Enable the Apache SSL module by running this command:

      sudo a2enmod ssl
      

      You’ll now need to add the SSL certificate and key as mentioned above here

      /var/www/cert/example.com.crt
      /var/www/cert/example.com.key
      

      You might need to create the directory ‘cert’ as most probably it won’t be there as well as the files.

      Once you are done restart Apache and your are good to go

      sudo service apache2 restart
      

      ** Please remember to change example.com everywhere with your actual domain! **

Submit an Answer