Century Web Design Century Web Design, Quality web site design, ecommerce, digital certificates and hosting.
Century Web Design
Support
Creating a CSR
Documentational Requirements
Installing a Certificate
Displaying your Secure Site Seal

Digital Certificates
Buy a Certificate now
FAQ'S
Compare Us
Browser Compatibility

General
Home
Other Services
Site Map
Contact Us

256-bit SSL Digital Web Certificates

Support - Installing multiple Certification Authorities on a single Apache webserver

To run more than one Certificate Authority on the Apache web server the configuration must look something like the details below. Please note the SSLCACertificateFile lines referencing 2 different bundle files which give 2 different root authorities. Please also note the virtual host delimiter </VirtualHost> which keeps the details for each virtual host separate.

### Section 3: Virtual Hosts

<IfDefine HAVE_SSL>

## SSL Virtual Host Context

<VirtualHost 192.168.0.20:443>
DocumentRoot "/var/www/html2"
ServerName apache2.comodo.net
ErrorLog logs/error_log
TransferLog logs/access_log
SSLEngine on
SSLCertificateFile /etc/httpd/conf/apache.ssl/server.crt
SSLCertificateKeyFile /etc/httpd/conf/apache.ssl/myserver.key
SSLCACertificateFile /etc/httpd/conf/apache.ssl/ca.txt
SSLOptions +FakeBasicAuth +ExportCertData +CompatEnvVars +StrictRequire
SetEnvIf User-Agent ".*MSIE.*" \
nokeepalive ssl-unclean-shutdown \
downgrade-1.0 force-response-1.0
CustomLog logs/ssl_request_log \
"%t %h %{SSL_PROTOCOL}x %{SSL_CIPHER}x \"%r\" %b"

</VirtualHost>

<VirtualHost 192.168.0.21:443>
DocumentRoot "/var/www/html2"
ServerName apache2.comodo.net
ErrorLog logs/error_log
TransferLog logs/access_log
SSLEngine on
SSLCertificateFile /etc/httpd/conf/apache2.ssl/server.crt
SSLCertificateKeyFile /etc/httpd/conf/apache2.ssl/myserver.key
SSLCACertificateFile /etc/httpd/conf/apache2.ssl/other-bundle.txt
SSLOptions +FakeBasicAuth +ExportCertData +CompatEnvVars +StrictRequire
SetEnvIf User-Agent ".*MSIE.*" \
nokeepalive ssl-unclean-shutdown \
downgrade-1.0 force-response-1.0
CustomLog logs/ssl_request_log \
"%t %h %{SSL_PROTOCOL}x %{SSL_CIPHER}x \"%r\" %b"

</VirtualHost>

If you are using the above to host InstantSSL Certificate issued by both the old GlobalSign root and the new GTE CyberTrust Root, you may download the two bundle files below:

GlobalSign bundle file
GTE CyberTrust bundle file

For more details please fill in the enquiries form in our contact us section or call us on +44 (0) 870 2242499 or e-mail us at enquiries@centurywebdesign.co.uk

Digital Certificates | Buy a Certificate now | FAQ'S | Browser Compatibility | Compare Us
Support | Creating a CSR | Documentational Requirements | Installing a Certificate
Displaying your Secure Site Seal | Other Services | Site Map | Contact Us

Century Web Design, 9 Wheatley Rd, Cardiff, South Wales, CF5 4LT
Telephone: +44 (0) 870 2242499, email: enquiries@centurywebdesign.co.uk