以域名www.codeinn.net为例,说明如何配置https协议方式访问的站点。
1、生成需要用到的证书:
openssl genrsa -out www.codeinn.net.server.key 1024 openssl req -new -out www.codeinn.net.server.csr -key www.codeinn.net.server.key -config ..\conf\openssl.cnf openssl genrsa -out www.codeinn.net.ca.key 1024 openssl req -new -x509 -days 365 -key www.codeinn.net.ca.key -out www.codeinn.net.ca.crt -config ..\conf\openssl.cnf openssl ca -in www.codeinn.net.server.csr -out www.codeinn.net.server.crt -cert www.codeinn.net.ca.crt -keyfile www.codeinn.net.ca.key -config ..\conf\openssl.cnf2、修改Apache的配置文件,开启https:
Include conf/extra/httpd-ssl.conf LoadModule ssl_module modules/mod_ssl.so3、修改站点的配置文件,使用证书并以https方式访问:
<VirtualHost *>
ServerAdmin webmaster@dearxq.com
DocumentRoot "D:\web\codeinn.net.www"
ServerName www.codeinn.net
ErrorLog "D:\web\codeinn.net.www\www-error_log"
CustomLog "D:\web\codeinn.net.www\www-access_log" common
SSLEngine on
SSLCertificateFile "D:\Apache\conf\ssl\www.codeinn.net.server.crt"
SSLCertificateKeyFile "D:\Apache\conf\ssl\www.codeinn.net.server.key"
</VirtualHost>
最后,访问https://www.codeinn.net/,OK!
