Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
D
D
dhaenoor2021-02-24 12:52:53
Nginx
dhaenoor, 2021-02-24 12:52:53

I bought a GGS Domain SSL certificate through high-cloud.ru. How to install it for Nginx on Debian?

I bought a certificate from GoGetSSL on high-cloud.ru (here: https://high-cloud.ru/gogetssl/gogetssl-domain-ssl/ )
Four files came with the following names:

  1. AAACertificateServices.crt
  2. GoGetSSLRSADVCA.crt
  3. mydomainname_en.crt
  4. USERTrustRSAAAACA.crt

There are no instructions for them and now I have no idea what to do with them. They all start with a string -----BEGIN CERTIFICATE-----, and now it is absolutely unclear how to screw this mess to Nginx. An Internet search led me to a complete stupor - everything is done differently everywhere: extensions, initial lines of file contents, approaches to the Nginx configuration files themselves. And, what is most offensive - everyone has either one or two certificate files - and here there are as many as four. And, as luck would have it, I'm not even close to being a webmaster and I can't guess. In addition, I see Nginx, and indeed the web for the first time from the inside.

Perhaps someone has already encountered this mess?

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

3 answer(s)
Report
G
galaxy, 2021-02-24
@dhaenoor

You should receive:
1. The certificate itself to the site
2. The certificate(s) of the intermediate CA(s)
3. The root certificate
They can be sorted into files in different combinations. Often like this: site certificate separately, certificate + all intermediate + root, intermediate + root.
For nginx, you need to write in ssl_certificate - the path to the file with the site certificate + intermediate ones (it is better not to include the root there) and ssl_certificate_key - the path to the private key (created when requesting a certificate).
I suspect that mydomainname_ru.crt is a naked website certificate. Look at the contents of the rest of the files, how many BEGIN / END blocks are there and which ones.
You can view the contents of the certificate (only the first BEGIN/END block!) with the command:
openssl x509 -in /path/to/file.crt -text

Report
M
Mikhail Vasilyev, 2021-02-24
@vasilyevmn

603623746560a810544294.jpeg
https://high-cloud.ru/installation-ssl/

Report
C
CityCat4, 2021-02-24
@CityCat4

1. Where is the key?
2. Three of the four files are root certificates in case they are missing, the actual certificate is the file mydomainname_ru.crt

Similar questions
F
fredrsf2014-01-16 12:14:46
How to change nginx root directory depending on cookies? 2Reply
Y
Yan Alexandrov2018-08-29 11:01:57
301 redirect to nginx site with html to no html? 1Reply
H
HoHsi2016-04-05 09:45:24
How to make Basic authorization on a remote host in Nginx? 2Reply
R
Rockman2016-04-06 00:34:23
How to organize a backup server with up-to-date data? 1Reply
C
coder-top2016-04-06 10:50:12
So what to choose for REST API -> ORACLE, (NODE vs PHP)? 3Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question