Related

Is it possible to use full disk encryption on an Ubuntu 14 droplet? Question Question
going around in circles trying to setup Ubuntu Question Question

Question

Can someone please help us apply our ready (added) Wildcard SSL for our website??? https?

Posted April 17, 2020 254 views
UbuntuSecurity

Our developer is no longer available. Asking for some help! We need an SSL (wildcard) added for our website (simple WP/woo) site. It’s purchased, Godaddy helped us create the files and even added to “Security” section (add certificate) in our “droplet”. Thats as far as we’ve gotten. We don’t know how to apply the SSL across all our URLs. This is overkill for us. Can’t see anywhere to add the SSL and apply it. Not familiar with “CONSOLE” or the language within console to apply it. Would GREATLY appreciate any assistance! Please :) This is a Godaddy Wildcard SSL all set and ready.

Add a comment
newepec
By:
newepec

Related

Is it possible to use full disk encryption on an Ubuntu 14 droplet? Question Question
going around in circles trying to setup Ubuntu Question Question

These answers are provided by our Community. If you find them useful, show some love by clicking the heart. If you run into issues leave a comment, or add your own answer to help others.

×
Submit an Answer
1 answer
KFSys April 17, 2020

Hi @newepec,

I’ll be able to guide you to create the certificate however you’ll first need to tell me a couple of things about your Droplet like what WebService you are running. I know you won’t be able to tell me like that so, I’ve prepared a couple of commands which you’ll need to run on your droplet to get that one out.

Firstly, login to your droplet via SSH:

ssh root@YourIpAddress

Once you are in, type in the following command and paste the output here

netstat -tulpen | grep '80\|443'

Once you provide me with output, I’ll be able to point you further.

Regards,
KDSys

Reply Report
  • newepec April 17, 2020

    tcp6 0 0 :::8080 :::* LISTEN 0 11873 1324/apache2
    tcp6 0 0 :::80 :::* LISTEN 0 11865 1324/apache2
    tcp6 0 0 :::443 :::* LISTEN 0 11877 1324/apache2

    Here is what I pulled!

    Reply Report
    • KFSys April 18, 2020

      Hi @newepec,

      Okay, so you are using Apache. Assuming your server is running on the default virtual host configuration file, /etc/apache2/sites-available/000-default.conf, use these commands to to make a copy:

      cd /etc/apache2/sites-available

      cp 000-default.conf example.com-ssl.conf

      Please make sure to change example.com with the actual domain you want to use.

      Once you have created the file, open it

      nano 000-default.conf

      Find the <VirtualHost *:80> entry and modify it so your web server will listen on port 443:

      <VirtualHost *:443>

      Then add the ServerName directive, if it doesn’t already exist (substitute your domain name here):

      ServerName example.com

      Then add the following lines to specify your certificate and key paths (substitute your actual paths here):

      SSLEngine on
SSLCertificateFile /var/www/cert/example.com.crt
SSLCertificateKeyFile /var/www/cert/example.com.key

      If you are using Apache 2.4.8 or greater, specify the CA intermediate bundle by adding this line (substitute the path):

      SSLCACertificateFile /home/sammy/intermediate.crt

      Save and exit.

      Enable the Apache SSL module by running this command:

      sudo a2enmod ssl

      You’ll now need to add the SSL certificate and key as mentioned above here

      /var/www/cert/example.com.crt
/var/www/cert/example.com.key

      You might need to create the directory ‘cert’ as most probably it won’t be there as well as the files.

      Once you are done restart Apache and your are good to go 

      sudo service apache2 restart

      ** Please remember to change example.com everywhere with your actual domain! **

      Reply Report

Related

Looking for something else?

Ask a new question Search for more help