Differences

This shows you the differences between two versions of the page.

--- public:computers:vps_tips_tricks [06/04/25 07:29 BST] – john
+++ public:computers:vps_tips_tricks [05/07/25 16:55 BST] (current) – [06/04/25 : Renew SSL certificate] john
@@ Line 95: / Line 95: @@
 ===== 06/04/25 : Renew SSL certificate =====
-  * Same procedure as above
+  * Same procedure as before
     * Download "Certificate" -> ''signed.crt''
     * Download "Intermediate Certificate" -> ''ca.pem''
@@ Line 107: / Line 107: @@
     * This is the same as the one used when I renewed ''YaddNet.org'' SSL [[public:radio:2025:yaddnet_ssl_renewal|]]
     * It seems that the intermediate certificate is not unique to the domain being secured, it's a certificate that verifies the identity of the authenticator of the domain's SSL certificate.
+=== UPDATE ON TWO INTERMEDIATE CERTIFICATES 5/7/25 ===
+I've discovered that the 2 Intermediate Certificates are necessary to complete the //chain// of authority.
+What should be done is to join them together into one //ca.pem// file (and in the correct order.... )
+<code bash>
+[root@wiki:/home/g4slv/ssl]# cat 397A66CC2756362E0DAA87CA6EABE3B1.cer 00D27FBBC1DE359E5216AD6149586099C4.cer > ca.pem
+[root@wiki:/home/g4slv/ssl]# cp ca.pem /usr/local/ssl
+[root@wiki:/home/g4slv/ssl]# systemctl restart apache2
+</code>
+Check correct SSL operation at [[https://www.ssllabs.com/ssltest/analyze.html]]
+===== Old information below is for historical information =====
 <note warning>
@@ Line 119: / Line 140: @@
 </note>
-===== Old information below is for historical information =====
 <code>
 OS      : Debian 10 (Buster)
@@ Line 135: / Line 156: @@
 ==== Access via FastHosts ====
-  * browse to [[https://admin.fasthosts.co.uk/Servers/VPS/1116040162]] and login with credentials (email : g...@..p.....)
+  * browse to [[https://admin.fasthosts.co.uk/Servers/VPS/1116040162]] and login with credentials
 ===== Installing SSL for HTTPS =====
 ==== Create Certificates ====