Knowledge Base

SSL Certificate Installation in Mac OS X / Apache

If you have not yet created a Certificate Signing Request (CSR) and ordered your certificate, see
Mac OS X GUI CSR Creation.

Mac OS X Server SSL Certificate Installation (version 10.5)

1. After your order has been issued, save the file your_domain_com.zip onto your server, and extract the two files 'your_domain_com.crt' and 'DigiCertCA.crt' to a folder.

2. Double-click the file DigiCertCA.crt and select to import to the System Keychain and click Add.
   Then enter the administrator's password to authorize the change.

   

3. Open Server Admin then click Certificates.

4. Click the Gear Icon and choose Add Signed or Renewed Certificate from Certificate Authority.
   
   

   

5. To import your certificate, in Finder drag the file your_domain_com.crt that DigiCert emailed to you into pop-up window when prompted.

   

6. Assign the SSL Certificate to the desired services:

   For Mail:

   1. On the left window panel click Mail.

   2. Open Settings > Advanced > Security.

   3. Assign the newly-installed SSL Certificate to SMTP or IMAP Services.

   For Web Services:

   1. Open Web > Sites.

   2. Choose the site you want to select the certificate onto.

   3. Click the Security tab and click the checkbox to Enable Secure Sockets Layer (SSL).

   4. Choose the certificate.

   5. At the prompt "Do you want to restart Web now?" Choose Restart.

      

      Your certificate should now be installed and ready to use.

Troubleshooting

1. If your web site is publicly accessible, our SSL Certificate Tester tool can help you diagnose common problems.

2. If you need to disable SSL version 2 compatibility in order to meet PCI Compliance requirements, you will need to add the following directive to your Apache configuration file:

       SSLCipherSuite HIGH:+MEDIUM:!SSLv2:!EXP:!ADH:!aNULL:!eNULL:!NULL

   If the directive already exists, you will probably need to modify it to disable SSL version 2.