Nginx is a very powerful, high-performance web and reverse proxy server. It has many very superior features. Therefore, a large number of users are using it. This article will introduce you to the steps on how to install an SSL certificate on Nginx.
1. Environment for installing SSL certificate
1.1 Introduction to SSl certificate installation environment
Centos 6.4 operating system;
Nginx 1.9.1 ;
Openssl 1.0.1+;
An SSL certificate (Note: This guide uses the OV SSL certificate of the s.wosign.com domain name for operation, and other versions of certificates are applicable).
1.2 Network environment requirements
Please ensure that the site is a legal domain name address that can be accessed from the external network, and it can be passed normally or .crt; (certificate public key)
< p>ssl_certificate_key sslkey/wosign.com.key; (certificate private key)ssl_session_timeout 5m;
ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
ssl_ciphers ALL:!DH:!EXPORT:!RC4:+HIGH:+MEDIUM:-LOW:!aNULL:!eNULL;
ssl_prefer_server_ciphers on;
location / {
root html;
index index.html index.htm;
}
}
Save and exit, and restart Nginx .
Thread/thread-1284-1-1.html
b. Deploy/thread-1667-1-1.html
3. Install security signature Chapter
(Currently, this security signature only supports certificates with level OV or above)
3.1 Install Chinese signature
(Note: The display of the signature requires external Internet environment, and /support/siteseal.htm
4. Backup of SSL certificate
Please save the received certificate compressed package file and password to prevent loss
5. Restoration of SSL certificate
Repeat the operation in 2.3.