C2Net Stronghold SSL Certificate Installation

If you have not yet created a Certificate Signing Request (CSR) and ordered your certificate, see
SSL Certificate CSR Creation :: Cobalt Web Servers.

Installing your C2Net Stronghold SSL Certificate

Installing your Primary Server Certificate (your_domain_name.crt)

  1. If you have a temporary SSL Certificate in your /ServerRoot/ssl/certs/ directory, move or delete it.

  2. Run Command "getca servername" where "servername" is the same name created during generation of your Private-Key or CSR request.

  3. Open your Primary DigiCert Certificate (your_domain_name.crt) with a text editor and copy the content (see example below), to your clipboard:

    text ...
    -----END CERTIFICATE-----

  4. Paste the contents of your Certificate into the getca terminal window and enter Control-D or the appropriate EOF character.

Installing your Intermediate CA Certificate (DigiCertCA.crt)

  1. Once you have completed the steps above you will copy your Intermediate DigiCert CA Certificate (DigiCertCA.crt) to your server in the /ssl/certs/ directory.

  2. Locate and edit your httpd.conf file (normally located in the /conf/ directory). Change the SSLCACertificateFile entry in your httpd.conf file so that it points to the DigiCert Intermediate Root Certificate file(DigiCertCA.crt) as follows:

    SSLCACertificateFile ssl/certs/DigiCertCA.crt

  3. Restart your server.


  1. If your web site is publicly accessible, our SSL Certificate Tester tool can help you diagnose common problems.

  2. Open a web browser and visit your site using https. It is best to test with both Internet Explorer as well as Firefox, because Firefox will give you a warning if your intermediate certificate is not installed. You should not receive any browser warnings or errors. If you immediately receive a browser message about the site not being available, then the server may not yet be listening on port 443. If your web request takes a very long time, and then times out, a firewall blocking traffic on TCP port 443 to the web server.

    If you receive a "not trusted" warning, view the certificate to see if it is the certificate you expect. Check the Subject, Issuer, and Valid To fields. If the certificate is issued by DigiCert, then your SSLCertificateChainFile is not correctly configured.

Installing your SSL Certificates in C2Net Stronghold

How to install your SSL Digital Certificate.