C2Net Stronghold

Installing your Web Server Certificate

Your certificate will be sent to you by email. The email message includes the web server certificate that you purchased in the body of the email message.

Copy the certificate from the body of the email and paste it into a text editor (such as notepad) to create text files.

1. Change directories to /usr/local/stronghold/bin.



2. Use the getcert script to install server certificate.



3. You will be prompted for your certificate. Copy the text from the email that you received from GeoTrust in the "Your Web Server Certificate" section and paste it into the section that getcert provides.
   
   Include ----BEGIN CERTIFICATE---- and ----END CERTIFICATE----. Press (Ctrl-D).



4. Use the getca script to install the Root Certificate.



5. You will be prompted for the trusted root certificate - "Equifax Secure Certificate Authority". The root certificate can be downloaded from http://www.geotrust.com/resources/root_certificates/index.htm. Please contact support for advice on which root you will need.



6. Restart your web server by using the following commands:
   
   stronghold/bin/strongholdctl restart
   Or if the server is not running
   stronghold/bin/strongholdctl start

Test your certificate by using a browser to connect to your server. Use the https protocol directive (e.g. https://your server/) to indicate you wish to use secure HTTP. The padlock icon on your browser will be displayed in the locked position if your certificates are installed correctly and the server is properly configured for SSL.