From Oxxus Wiki
Certain contents exchange over web , like purchasing using credit card details, or providing contents like email login details, that are not for public use , are handled via encrypted sessions.
It's supported via SSL engines implemented within various applications or services like web servers, email servers etc.
SSL certificates for shared hosting requires dedicated ip address to which it'll be binded within configuration.
Services installation is done through Ensim hosting account administration panel, and has to be performed by hosting provider as it requires web services restarting.
VPS/Dedicated server hosting
The SSL services that Oxxus.Net hosting provides are for use with Apache's mod_ssl module but can be easily imported into Tomcat's keystore and used for java related pages with https encryption access feature. The Apache module mod_ssl can be installed via package maintainers like yum or apt-get with command below executed
yum install mod_ssl, or apt-get install mod_ssl
SSL certificate request creation
SSL certificate providers requires 2KB requests.
From hosting where certificate is going to be installed certificate request can be created as follows, for Linux OS environment.
Login to hosting shell via ssh services with as root.
Step 1: Generate a Private Key
openssl genrsa -des3 -out server.key 2048
Step 2: Generate a CSR (Certificate Signing Request)
openssl req -new -key server.key -out server.csr
Step 3: Remove Passphrase from Key
cp server.key server.key.org
openssl rsa -in server.key.org -out server.key
Generated certificate request, server.csr, is now ready to be provided to certificate provider. Within request generation process an email address, to which certificate will be sent, is stated usually in form webmaster@DOMAIN_NAME so inbox has to be reachable by owner or administrator of hosting account.
SSL certificate installation
Once certificate is received, edit ssl.conf file, placed at /etc/httpd/conf.d/ folder and set following directives:
Restart Apache services and web site is now accessible via HTTS secure sessions.