27 | | * f. save zip locally then on your local computer run 'scp /PATH/TO/SERVERNAME_mayfirst_org.zip root@SERVER_NAME.mayfirst.org:/etc/ssl/temp' to copy the zip file to the server. |
28 | | * g. on the server 'unzip /etc/ssl/temp/SERVERNAME_mayfirst_org.zip' |
29 | | * h. from /etc/ssl/temp on the host machine you can run 'cat PositiveSSLCA2.crt >> SERVERNAME_mayfirst_org.crt && mv SERVERNAME_mayfirst_org.crt ../SERVERNAME.mayfirst.org.crt.new' . This will create the correct certificate for the /etc/ssl directory (including the intermediate certificate). You need both Intermediate and Primary certificates for apache to use ssl correctly. |
30 | | * i. next from /etc/ssl/private do 'umask 177; cat SERVERNAME.mayfirst.org.key.$(date +%F) >> SERVERNAME.mayfirst.org.pem.new' |
31 | | * j. next from /etc/ssl/private do 'cat ../SERVERNAME.mayfirst.org.crt.new >> SERVERNAME.mayfirst.org.pem.new; umask 133' |
| 27 | * f. save zip locally then on your local computer run command below to copy the zip file to the server. |
| 28 | {{{ |
| 29 | scp /PATH/TO/SERVERNAME_mayfirst_org.zip root@SERVER_NAME.mayfirst.org:/etc/ssl/temp |
| 30 | }}} |
| 31 | |
| 32 | * g. on the server |
| 33 | {{{ |
| 34 | unzip /etc/ssl/temp/$(hostname)_mayfirst_org.zip |
| 35 | }}} |
| 36 | * h. from /etc/ssl/temp on the host machine you can run |
| 37 | {{{ |
| 38 | cat PositiveSSLCA2.crt >> $(hostname)_mayfirst_org.crt && mv $(hostname)_mayfirst_org.crt ../$(hostname).mayfirst.org.crt.new' . |
| 39 | }}} |
| 40 | * This will create the correct certificate for the /etc/ssl directory (including the intermediate certificate). You need both Intermediate and Primary certificates for apache to use ssl correctly. |
| 41 | * i. next from /etc/ssl/private do |
| 42 | {{{ |
| 43 | umask 177; cat $(hostname).mayfirst.org.key.$(date +%F) >> $(hostname).mayfirst.org.pem.new |
| 44 | }}} |
| 45 | * j. next from /etc/ssl/private do |
| 46 | {{{ |
| 47 | cat ../$(hostname).mayfirst.org.crt.new >> $(hostname).mayfirst.org.pem.new; umask 133 |
| 48 | }}} |