In a previous post I described how to enforce SSL in this post I show how to replace the self-signed certificate with one from a Certificate Authority such as StartSLL.
The standard configuration of Bitnami servers is that the Apache configuration is overwritten by an application configuration. The Bitnami server is provided with a self-signed certificate and there are two copies of this, one in the application configuration directory and one in the Apache configuration directory.
I have chosen to replace both with my own certificates.
Changing the Apache Certificates
The Bitnami documentation for Apache tells you how to change your certificates at the Apache level.
Backup and replace the certificates stored here
and update the configuration file
to include the following line below the SSLCertificateKeyFile:
Changing the Application Certificates
To replace the certificates at the application level you must put them in
(I have used example.com)
<VirtualHost *:443> ServerName example.com ServerAlias *.example.com DocumentRoot "/opt/bitnami/apps/wordpress/htdocs" SSLEngine on SSLCertificateFile "/opt/bitnami/apps/wordpress/conf/certs/server.crt" SSLCertificateKeyFile "/opt/bitnami/apps/wordpress/conf/certs/server.key" SSLCertificateChainFile "/opt/bitnami/apps/wordpress/conf/certs/server-ca.crt" Include "/opt/bitnami/apps/wordpress/conf/httpd-app.conf" </VirtualHost>
and restart the Apache server
$ sudo /opt/bitnami/ctlscript.sh restart apache
Note on using StartSSL Certificates
The SSLCertificateChainFile is
ca.crt is not required.
Fahad Rafiq said:
After the Google announced that SSL is now a ranking factor. Everyone is rushing towards moving their website to HTTPS.
But most people do not realize there are many things people forget to do, like for example blocking HTTP pages from indexing and submitting HTTPS website to Google Webmaster tools again.
Read this tutorial on how to setup SSL on WordPress websites: http://www.cloudways.com/blog/how-to-install-ssl-certificates-wordpress/
Jason Nelson said:
I have multiple WordPress web sites, so I installed multiple SSL certificates on one IP address using the instructions found here.