How to install multiple Intermediate CA Certificate files on Apache?

apache-2.2 security ssl ssl-certificate
14,858

  1. No, you don't need to share the root. Your visitors that have it trusted already (likely from the company who provided their OS) will already have it.

  2. Yes, using your command should be correct, assuming they're all PEM encoded.

  3. Per the University of Wisconsin here, order does matter, but only if you provide the root.

Share:
14,858
pdeva
Author by

pdeva

Updated on September 18, 2022

Comments

  • pdeva
    pdeva over 1 year

    I just bought a SSL certificate, and here are all the certificate files i got:

    Root CA Certificate - xxCARoot.crt
Intermediate CA Certificate - x1.crt
Intermediate CA Certificate - x2.crt
Intermediate CA Certificate - x3.crt
Your EssentialSSL Wildcard Certificate - mydomain.crt

    Now to install my certificates on apache:

    1. Do I need to expose the Root CA Certificate at all?
    2. Since apache only allows 1 SSLCertificateChainFile directive, am I supposed to create a bundle file of the intermediate CA's?

    3. If so. will the order of certificates in the bundle file be reversed like this:

      cat x3.crt x2.crt x1.crt > myca.bunndle

    4. If the root certificate does have to be added, does it come in last (after z1) or first (before x3) in the bundle (assuming the order is correct in the first place)?

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

Error while creating self-signed SSL certificate
How can the SSL client validate the server's certificate?
Security Warning: The Server you are connected to is using a security certificate that cannot be verified. The Target principal name is incorrect
sslv3 alert bad certificate when attempting to connect with Mail Client
Restart of nginx service fails because of /etc/nginx/nginx.conf test failure
Apache2 SSL Certificate error
Apache multiple virtual hosts with ssl certificates
How to disable SSL/TLS compression in Apache 2.2.16?
How to install godaddy's ssl on apache
SSL certificates for domain without www