where is ssl crt & key stored

[Madness]

hi guys. ive just added a ssl certificate but where is it stored on the server


for a reverse proxy e.g.

ssl_certificate /etc/pki/nginx/www.example.net.crt;
ssl_certificate_key /etc/pki/nginx/www.example.net.key;

 

[IgorG]

Do you mean ssl certificate installed for domains?

/usr/local/psa/var/certificates/

 

[Madness]

Do you mean ssl certificate installed for domains?

/usr/local/psa/var/certificates/

It seems to be just a single file. how can i use this with a single file?


server {
listen xxx.xxx.xxx.xxx:443;
server_name www.example.net;

root /var/www/vhosts/www.example.net;

ssl on;
ssl_certificate /etc/pki/nginx/www.example.net.crt;
ssl_certificate_key /etc/pki/nginx/www.example.net.key;

ssl_protocols SSLv3 TLSv1;
ssl_ciphers ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP;
ssl_prefer_server_ciphers on;

location / {
proxy_pass http://127.0.0.1:8080;
proxy_set_header Host $host;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Forwarded-Proto https;
}
}

 

[UFHH01]

Hi Madness,

please have a look at the following article, which describes pretty well some basic knowledge about certificates:

http://www.thegeekstuff.com/2009/07/linux-apache-mod-ssl-generate-key-csr-crt-file/ ( external link, please inform me, if the link goes dead )
​

In addition, please don't edit a Plesk generated configuration file manually, if you would like to secure a website with your own certificate. Instead, please use the Plesk Control Panel.

Securing Connections with SSL Certificates ( Advanced Administration Guide, Plesk 12.0 for Linux online documentation )
​

( If you edit Plesk generated configuration files manually, please be aware that all your changes may be overwritten in case of updates/upgrades/patches, or webserver-configuration-rebulid-processes )

 

[Madness]

Hi Madness,

please have a look at the following article, which describes pretty well some basic knowledge about certificates:

http://www.thegeekstuff.com/2009/07/linux-apache-mod-ssl-generate-key-csr-crt-file/ ( external link, please inform me, if the link goes dead )
​

In addition, please don't edit a Plesk generated configuration file manually, if you would like to secure a website with your own certificate. Instead, please use the Plesk Control Panel.

Securing Connections with SSL Certificates ( Plesk 12 online documentation )
​

( If you edit Plesk generated configuration files manually, please be aware that all your changes may be overwritten in case of updates/upgrades/patches, or webserver-configuration-rebulid-processes )

I've already added a certificate to my website via the plesk panel.

I want to add proxy pass as the example above shows

 

[UFHH01]

Hi Madness,

same here... if you add manually modifications to your Plesk - generated configuration files, you might loose any modification on each update/upgrade/patch, or by webserver-configuration-rebulid-processes.


If you would like to modify your configuration files, there are two ways:

Either change your configuration files, by building custom templates..... please see:

Changing Virtual Hosts Settings Using Configuration Templates ( Advanced Administration Guide, Plesk 12.0 for Linux online documentation )
​

... or add additional directives over the Plesk Control Panel:

Start > Abonnements > DOMAIN.COM > Websites & Domains > (SUBDOMAIN.)DOMAIN.COM > Webserver settings

​

If you need help, HOW TO BUILD custom configuration templates, please use the FORUM SEARCH, as there are quite a lot of threads with such a question. Just use the search words "custom templates", or use your own search words. ( Example: http://talk.plesk.com/threads/ssl-poodle-sslv3-bug.323338/#post-761018 )
If you still need help with this, please open a new thread, because this has got nothing to do with your initial question and might confuse other forum users, or users who search for solutions here in the forum.