How to Deploy HTTPS Request a Certificate Install a certificate

The HTTPS certificate is also known as the SSL certificate, and the specific application process is as follows:

Step 1: Submit the CSR to the ** vendor.

The CSR (Certificate Signing Request) file must be generated by the user himself, or you can use the CSR generation tool. Select the product you want to apply, submit a new order, and submit the prepared CSR file.

Step 2 Submit the information to CA

After receiving your order and CSR, if it is a domain name verification certificate (DV SSL certificate), the certificate can be issued in about 10 minutes after the domain name verification, and if it is a certificate of other types, it needs to be verified by a CA before it can be issued.

Step 3 Send a verification email to the administrator's mailbox.

Once the CA receives the information, it will send a confirmation letter to the administrator's email address with a corresponding link to the past. Each order has a unique PIN for verification purposes.

Step 4: Email verification.

Click on the link in the confirmation letter to access the CA Agency Verification**, in Verification**, you can see the application materials for the order, and then click "I Approve" to complete the email verification.

Step 5 Issuance of certificates.

After the user completes the email verification, the CA will send the certificate to the applicant's own email address by email, and the user can install it directly after receiving the certificate. If there is a problem with the installation, we provide a free certificate installation service.

**How do I apply for an HTTPS certificate? There are several main steps.

1. Generate a CSR for the certificate request file

CSR (Certificate Secure Request) is a certificate request file, the first step for webmasters to apply for SSL certificate is to generate a CSR certificate request file, and the system will generate two keys, one is the public key is this CSR file, and the other is the private key, which is stored on the server. To generate a CSR file, the webmaster can refer to the documentation of the web server, generally apache, etc., use the openssl command line to generate key+csr 2 files, tomcat, jboss, resin, etc. use keytool to generate jks and csr files, and iis creates a pending request and a csr file through the wizard.

Reminder: If you are applying for WoSign SSL certificate, its digital certificate store already supports CSR files to be automatically generated by the system, and users do not need to generate CSR files on the web server in advance. For details, please refer to:

WoSign SSL Certificate Request File (CSR) Generation Guide.

2. Select a CA to apply for an SSL certificate

The Certificate Authority (CA), also known as the SSL Certificate Verification and Issuing Authority, is a trusted third party in e-commerce transactions and is responsible for the legitimacy verification of the public key in the public key system.

3. Submit the CSR to the CA for certification

There are generally 2 ways to certify CA institutions:

1) Domain name authentication. Generally, the authentication speed is fast through the administrator's email address, but there is no enterprise name in the issued certificate, and only the ** domain name is displayed, which is what we often call the domain name SSL certificate.

2) Enterprise document certification. A business license for the business needs to be provided.

The certificate of the above two ways is called EV SSL certificate, and the EV SSL certificate can make the browser address bar turn green, so the certification is also the most stringent. EV SSL certificates are mostly used in fields with high requirements for information security protection, such as finance, e-commerce, and **.

4. Obtain the SSL certificate and install it

After receiving the SSL certificate issued by the CA, deploy the SSL certificate to the server, and copy the key+cer file directly to the file, and then modify the file. For example, Tomcat needs to import the certificate CER file issued by the CA into the JKS file, copy it to the server, and then modify it. IIS needs to handle pending requests to import the CER file. For details about how to install SSL certificates, please refer to the tutorial.

2. Prepare an independent server (cloud server) and domain name.

3. Verify the certificate according to the requirements of the issuing authority.

4. After getting the certificate, install it according to the technical documents of the issuing authority, and you can also provide direct technical support.

3. To install the firewall, you need to set the allow port 443 or turn off the firewall, if the local server installs the security dog, please allow port 443. 4. https** does not allow any HTTP common protocol data to be called, such as: js, css, **, **, any resources, if the address bar is called, the lock icon will not be displayed.

Procedure for applying for an HTTPS certificate (SSL certificate):

The first step is to generate and submit a CSR (Certificate Signing Request) document.

CSR files can generally be generated by ** (or generated on the server), and the system will generate two secret keys, public key CSR and key key, at the same time as the applicant makes it. Once you have selected the SSL certificate application, submit the order and submit the generated CSR file to the CA authority where the certificate is located.

In the second step, the CA agency conducts verification.

CAs can verify submitted SSL certificate applications in two ways:

The first is domain name authentication. A verification email will be automatically sent to the domain administrator's email address (this email address is the domain contact email address that was queried through the WHOIS information). After receiving the email, the administrator will confirm that it is correct and click "I confirm" to complete the email verification.

All SSL certificates must be authenticated.

The second is enterprise-related information certification. For enterprises that apply for an SSL certificate or an EV SSL certificate, in addition to domain name authentication, it is also necessary to manually verify the relevant materials and information of the enterprise to ensure the authenticity of the enterprise.

In the third step, the CA institution issues the certificate.

Due to the different models of SSL certificate applications, the materials and methods to be verified are somewhat different, so the issuance time is also different.

If you apply for a DV SSL certificate, it will be issued in about 10 minutes at the earliest. If you apply for an OV SSL certificate or an EV SSL certificate, it will be issued within 3-7 working days.

The HTTPS certificate is also an SSL certificate, and the applicant determines the domain name and then has it verified by the issuing authority before issuance.

Apply for https to determine the domain name in advance, and then the domain name registrar will get the optical network verification and resolution instructions, and issue it after resolution.

**How to install enabledSSL certificates

The first is to apply for an SSL certificate, after importing. We need to set up ** to use the SSL certificate normally. Then open the SSL-enabled **, right-click and select "Binding.""Set the host header, and in the binding settings that appear, select SSL certificate.

If you have more than one server security certificate, one of the options below is definitely optional. Once you've made your selection, click OK and install the certificate.

After installing the certificate, you can click on the binding to view, at this time you will find that there is an additional https host header, if the addition is successful, after opening the corresponding **, find the corresponding SSL server certificate, you will find that there is a certificate there, then the SSL security certificate is done.

Before installing and enabling the SSL certificate, you must first apply for the SSL certificate, apply for the SSL certificate, pay attention to the security level of the certificate, and choose the SSL certificate that meets your own type.

Once the SSL certificate is issued, it can be installed on the service.

First of all, you need to understand which type of SSL certificate is suitable for;

Second, select the SSL certificate issued by the CA;

Finally, the technical department is responsible for the installation and commissioning of the SSL certificate;

Under Install and manage SSL (HTTPS) for your site, click Manage SSL sites.

Scroll down to Install SSL and click Browse Certificates.

Select the certificate to be activated and click Use Certificate. This will automatically populate the fields for the certificate.

Hello! Demolition or Wang.

**To achieve HTTPS access, you need to apply for an SSL certificate, then deploy the SSL certificate to the server, and enable port 443 Tuansen to achieve HTTPS access. Also, how do I get an SSL certificate? You can apply for a paid and free SSL certificate at a CA institution, and some institutions have launched a free SSL certificate, such as WoSign CA has launched a 3-year multi-domain free SSL, which can be applied for free.

How to deploy an SSL certificate, when you apply for it, there is a corresponding deployment guide.

Thanks, Hostel Hope!

Step 2: Submit to the CA organization: After receiving the user's order and CSR, the information will be submitted to the corresponding CA organization immediately.

Step 4: Complete email verification: After clicking the verification link in the mailbox, you can see the application materials required for the order, and click on "i approve" to complete the email verification.

Step 5: Issue SSL certificate: After the CA has completed all the verifications (different certificates take different times), the CSL certificate will be sent to the applicant's email address by email.

1. Domain name (domain name can be resolved normally).

2. Dedicated server (cloud server) or virtual host that supports the installation of SSL certificate.

3. Log in to GWORG to register an HTTPS certificate.

4. Deploy the certificate to the server or cloud platform to achieve HTTPS.