Part 1:
1) open dos prompt, navigate to apache/bin
2) run the command „openssl genrsa -des3 -out my.domain.com.key 1024”
3) create a PEM
I’ve now created my Key file (I think this step is OK)
Part 2:
1) still in the same working directory, run the command:
„openssl req -config apachebinopenssl.cnf -new -key my.domain.com.key -out my.domain.com.csr”
2) enter PEM
3) enter in requested details -> country, state, city, company name, domain name etc
I’ve now created my csr file (I think this step is OK)
Part 3:
1) Open Thawte website, request free 21 day trial certificate, enter my details for their marketing
2) Open my.domain.com.csr with a text editor (in this case notepad)
3) Copy contents of my.domain.com.csr (everything including „––BEGIN CERTIFICATE REQUEST––” and „––END CERTIFICATE REQUEST––” and everything in between)
4) Thawte generates a certificate which looks like
––BEGIN CERTIFICATE––
MIIDJTCCAo6gAwIBAgIQbRK8UxzssfdyTuJ+Bd2GajANBgkqhkiG9w0BAQUFADCB
.
.
pA/S/xYkOnLFyAyudFT6gTJenlG8kPC1VXjImFKAEL3wW2Q5ZSZ2STo=
––END CERTIFICATE––
I copy and paste this into a text file which I rename my.domain.com.crt (I think this step is OK)
Part 4 – Updating the Apache Config
this is where I think I’m making mistakes.
1) I copy my.domain.com.crt into xamppapacheconfssl.crt
2) I copy my.domain.com.key into xamppapacheconfssl.key
3) I rename my.domain.com.csr to server.csr and copy it into xamppapacheconfssl.csr
4) I update xamppapacheconfextrahttpd-ssl.conf
I change SSLCertificateFile conf/ssl.crt/server.crt to SSLCertificateFile conf/ssl.crt/my.domain.com.crt
and change SSLCertificateKeyFile conf/ssl.key/server.key to SSLCertificateKeyFile conf/ssl.key/my.domain.com.key
5) stop apache
6) start apache (apache unable to start)
Part 4 (alternative) I’ve also tried:
1) I rename my.domain.com.crt to server.crt and copy into xamppapacheconfssl.crt
2) I rename my.domain.com.key to server.key and copy into xamppapacheconfssl.key
3) I rename my.domain.com.csr to server.csr and copy it into xamppapacheconfssl.csr
4) (don’t touch xamppapacheconfextrahttpd-ssl.conf)
5) stop apache
6) start apache (apache unable to start)