You can purchase and issue a certificate in the SSL Certificates Service console and then download and install the certificate on an NGINX server or a Tengine server. This topic describes how to download and install the certificate.
Prerequisites
- The certificate is issued in the SSL Certificates Service console. For more information, see Apply for a certificate.
- A remote logon tool, such as PuTTY or Xshell, is available for logging on to your web server.
Background information
In this example, CentOS 8 and NGINX 1.14.1 are used. Operations for other versions of CentOS and NGINX may be slightly different.
In this example, the certificate name is cert-file-name. Therefore, the Certificate Authority (CA) certificate file is named cert-file-name.pem, and the key file is named cert-file-name.key.
Notice In actual use, you must replace cert-file-name with the name of your certificate based on the description of the sample code. For
more information about how to obtain a certificate name, see Download a certificate to your on-premises machine.
Step 1: Download a certificate to your on-premises machine
Step 2: (Optional) Install the certificate on an NGINX server
Step 2: (Optional) Install the certificate on an NGINX virtual host
Step 3: Verify the installation
After you complete certificate installation, you can verify it by accessing the domain
name that is bound to the certificate.
https://yourdomain.com # Replaces yourdomain.com with the domain name that is bound to your certificate.
If a lock icon appears in the address bar, the certificate is installed.
If you encounter the following issues, troubleshoot them based on the following table.
Issue | Possible cause | Solution |
---|---|---|
Your website cannot be accessed by using HTTPS. | Port 443 of the NGINX server on which you install the certificate is not enabled, or traffic to this port is blocked. |
|
The "Your connection to this site is not fully secure" message is reported. | The code of your website uses HTTP. | Change the protocol from HTTP to HTTPS in the code of your website.
Note The implementation logic varies based on the website code. Change the protocol based
on your actual situation. If you need more support, submit a ticket.
|
References
- Install SSL certificates in Tomcat servers
- Install SSL certificates on Apache servers
- Deploy SSL certificate on Ubuntu Apache2
- How do I deploy the issued certificate in Apache server
- Install SSL certificates in IIS servers
- Deploy SSL certificates on CentOS-based Tomcat 8.5 or 9.0
- An SSL certificate is configured by the jetty server