Physical Server Certificate Import
Login into any of the servers and generate the csr file using the following commands
openssl req –new –newkey rsa:2048 –nodes –keyout server.key –out server.csr
provide the following details on prompt
Domain - *.empyra.com
Locality - Irving
Organization - empyra
Organization unit - empyra
state - TX
country - US
email - sysadmin@empyra.com
Share the server.csr file with the IT support team(Possibly Vinayak)
It support team will share the ssl certificate having root, intermediate and ssl certificate bundled in one file(bundle.crt)
import the bundle.crt file into MMC (personal section and trusted certificate section)
2) Configure the SSL in nginx
goto the nginx.conf file and put the following lines in the server section
ssl_certificate /etc/bundle.crt;ssl_certificate_key /etc/rsa_domain.rsa;
Note : Make sure to copy the bundle.crt and server.key to the etc folder
rename server.key to rsa_domain.rsa
reboot the physical server
3) Configure SSL in node application server if Nginx is not present
goto app.js file in the nodejs application and put the following lines as options for https server
var options = { cert: fs.readFileSync("./cer/bundle.crt"), key: fs.readFileSync("./cer/rsa_domain.rsa"),};
Note : Make sure to copy the bundle.crt and server.key to the cer folder
reboot the node application server