


Support Desk
Download and unzip your certificate files in NGINX format by clicking on the download link in your fulfillment email or from your GeoCerts SSL Manager account. You will find one .crt file that contains your domain SSL server certificate stacked on top of the required CA intermediate chain pre-bundled for you.
your_domain_com.crt
Copy these files, along with the private key file you created when generating the CSR, to the NGINX /etc/ssl
directory.
Locate your NGINX configuration file and enter the full path to your your_domain_com.crt
SSL server certificate and private key files.
worker_processes 1;
http {
server {
listen 443;
ssl on;
ssl_certificate /usr/local/nginx/conf/your_domain_com.crt;
ssl_certificate_key /usr/local/nginx/conf/private.key;
keepalive_timeout 70;
}
}
Since NGINX version 0.7.14 the preferred way of enabling SSL is by using the ssl
parameter of the listen
directive:
server {
listen 443 default ssl;
ssl_certificate /usr/local/nginx/conf/your_domain_com.crt;
ssl_certificate_key /usr/local/nginx/conf/private.key;
...
}
After making changes to your config file it is good practice to check the file for syntax errors before restarting NGNIX. The following command will determine if there are errors.
~$ sudo nginx -t -c /etc/nginx/nginx.conf
The new configuration changes require server restart. Use the following command to restart your NGINX server.
~$ sudo /etc/init.d/nginx restart
Please contact our support team if you have any additional problems or questions.