Install your Certificates on Apache (OpenSSL)

For Apache v1.X

1. Download the appropriate Intermediate Certificate(s) and save it in a text editor as intermediate.pem:
   • DomainSSL / OrganizationSSL / ExtendedSSL: SSL Certificate Bundle
2. Copy your SSL Certificate out of the order fulfilment e-mail (or log into your GlobalSign Certificate Center account and download it) and paste it into a text editor and save as mydomain.pem.
3. Copy “mydomain.crt” and “intermediate.pem” to the directory in which you plan to store your certificates.
4. Open your httpd.conf file (some installations keep the SSL section separately in the ssl.conf file) using a text editor, and locate the virtual host section for the site for which the SSL Certificate will secure.

Your virtual host section will need to contain the following directives:

• SSLCertificateChainFile – This will need to point to the appropriate Intermediate root CA certificates.
• SSLCertificateFile – This will need to point to the end entity certificate (the one you have called “mydomain.crt”)
• SSLCertificateKeyFile – This will need to point to the private key file associated with your certificate.
1. Save the changes to the file and quit the text editor
2. Restart apache.

For Apache 2.X

1. Download the appropriate GlobalSign root certificate and save it in a text editor as gs_root.pem:

Note: The ExtendedSSL certificate uses the GlobalSign root CA RC2 Certificate.

• DomainSSL and OrganisationSSL: GlobalSign Root CA
• ExtendedSSL: GlobalSign Root CA RC2
1. Download the appropriate Intermediate Certificate(s) and save it in a text editor as intermediate.pem:
   • DomainSSL / OrganizationSSL / ExtendedSSL: SSL Certificate Bundle
2. Copy your SSL Certificate out of the order fulfilment e-mail (or log into your GlobalSign Certificate Center account and download it) and paste it into a text editor and save as mydomain.crt.
3. Copy “mydomain.crt” and “intermediate.pem” to the directory in which you plan to store your certificates.
4. Open your httpd.conf file (some installations keep the SSL section separately in the ssl.conf file) using a text editor and locate the the virtual host section for the site for which the SSL Certificate will secure.
   • Your virtual host section will need to contain the following directives:
   • SSLCACertificateFile – This will need to point to the appropriate GlobalSign root CA certificate.
   • SSLCertificateChainFile – This will need to point to the appropriate intermediate root CA certificates you previously created in Step 1 above.
   • SSLCertificateFile – This will need to point to the end entity certificate (the one you have called “mydomain.crt”)
   • SSLCertificateKeyFile – This will need to point to the private key file associated with your certificate.
5. Save the changes to the file and quit the text editor
6. Restart apache.