Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
D
D
dhaenoor2021-02-24 12:52:53
Nginx
dhaenoor, 2021-02-24 12:52:53

I bought a GGS Domain SSL certificate through high-cloud.ru. How to install it for Nginx on Debian?

I bought a certificate from GoGetSSL on high-cloud.ru (here: https://high-cloud.ru/gogetssl/gogetssl-domain-ssl/ )
Four files came with the following names:

  1. AAACertificateServices.crt
  2. GoGetSSLRSADVCA.crt
  3. mydomainname_en.crt
  4. USERTrustRSAAAACA.crt

There are no instructions for them and now I have no idea what to do with them. They all start with a string -----BEGIN CERTIFICATE-----, and now it is absolutely unclear how to screw this mess to Nginx. An Internet search led me to a complete stupor - everything is done differently everywhere: extensions, initial lines of file contents, approaches to the Nginx configuration files themselves. And, what is most offensive - everyone has either one or two certificate files - and here there are as many as four. And, as luck would have it, I'm not even close to being a webmaster and I can't guess. In addition, I see Nginx, and indeed the web for the first time from the inside.

Perhaps someone has already encountered this mess?

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

3 answer(s)
Report
G
galaxy, 2021-02-24
@dhaenoor

You should receive:
1. The certificate itself to the site
2. The certificate(s) of the intermediate CA(s)
3. The root certificate
They can be sorted into files in different combinations. Often like this: site certificate separately, certificate + all intermediate + root, intermediate + root.
For nginx, you need to write in ssl_certificate - the path to the file with the site certificate + intermediate ones (it is better not to include the root there) and ssl_certificate_key - the path to the private key (created when requesting a certificate).
I suspect that mydomainname_ru.crt is a naked website certificate. Look at the contents of the rest of the files, how many BEGIN / END blocks are there and which ones.
You can view the contents of the certificate (only the first BEGIN/END block!) with the command:
openssl x509 -in /path/to/file.crt -text

Report
M
Mikhail Vasilyev, 2021-02-24
@vasilyevmn

603623746560a810544294.jpeg
https://high-cloud.ru/installation-ssl/

Report
C
CityCat4, 2021-02-24
@CityCat4

1. Where is the key?
2. Three of the four files are root certificates in case they are missing, the actual certificate is the file mydomainname_ru.crt

Similar questions
D
DeniSidorenko2017-11-04 14:11:23
Does it make sense to do SEO optimization and security settings if the site is transferred to another hosting and another domain? 4Reply
S
StynuBlizz2017-06-14 06:07:05
Error connecting nginx-rtmp-module, how to fix? 1Reply
L
Lubovka9992017-06-15 12:25:20
How can VESTACP upgrade nginx to 1.9.2? 0Reply
D
dmitry2511902019-11-14 14:18:59
How to give server response code 404 instead of 200 on any page of the site? 3Reply
L
Loopst2019-11-15 01:20:00
PHP Fatal error: Cannot redeclare ihc_init() How to fix? 1Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question