Support Desk

Download and copy your certificate files to your server

Download your SSL certificate and support files by clicking on the download link in your fulfillment email or from your GeoCerts SSL Manager account. Unzip the files and copy them into the directory where you will keep your certificates. Some files in the zip may or may not be used depending on your server type.

Concat server cert and intermediate into a single file

Nginx requires a single file that contains the SSL Server Certificate stacked on top of the GeoTrust intermediate. The SSL Server Certificate (your_domain_com.txt) must be first in the stack. You can accomplish this by running this command:

cat GeoTrust_Intermediate.txt >> your_domain_com.txt

This will append the intermediate to SSL cert file.

Next change the filename for your_domain_com.txt to your_domain_com.crt.

Update your Nginx Configuration File

Locate your Nginx configuration file and enter the full path to your concatenated SSL server certificate file and private key.

worker_processes 1;
http {
  server {
    listen               443;
    ssl                  on;
    ssl_certificate      /usr/local/nginx/conf/your_domain_com.crt;
    ssl_certificate_key  /usr/local/nginx/conf/cert.key;
    keepalive_timeout    70;

Since Nginx version 0.7.14 the preferred way of enabling SSL is by using the `ssl` parameter of the `listen` directive:

server {
  listen 443 default ssl;
  ssl_certificate      /usr/local/nginx/conf/your_domain_com.crt;
  ssl_certificate_key  /usr/local/nginx/conf/cert.key;  


After making changes to your config file it is good practice to check the file for syntax errors before attempting to use it. The following command will determin there are errors.

sudo nginx -t -c /etc/nginx/nginx.conf

Restart your Nginx web server:

sudo /etc/init.d/nginx restart

Verify Installation

 To verify if your certificate is installed correctly, use our Certificate Installation Checker.

Test your SSL certificate by using a browser to connect to your server. Use the https protocol directive. For example, if your SSL was issued to, enter into your browser.

Your browser's padlock icon  will be displayed in the locked position if your certificate is installed correctly and the server is properly configured for SSL.

More Info

Nginx HttpSslModule:

Disclaimer: GeoCerts has made efforts to ensure the accuracy and completeness of the information in this document. However, GeoCerts makes no warranties of any kind (whether express, implied or statutory) with respect to the information contained herein. GeoCerts assumes no liability to any party for any loss or damage (whether direct or indirect) caused by any errors, omissions, or statements of any kind contained in this document. Further, GeoCerts assumes no liability arising from the application or use of the product or service described herein and specifically disclaims any representation that the products or services described herein do not infringe upon any existing or future intellectual property rights. Nothing herein grants the reader any license to make, use, or sell equipment or products constructed in accordance with this document. Finally, all rights and privileges related to any intellectual property right described herein are vested in the patent, trademark, or service mark owner, and no other person may exercise such rights without express permission, authority, or license secured from the patent, trademark, or service mark owner. GeoCerts reserves the right to make changes to any information herein without further notice.
Mar 20, 2018
Contact Us!


GeoCerts, Inc.
2221 Peachtree Rd NE
Suite D-236
Atlanta, GA 30309
Toll Free: (800) 892-7095
International: +1 (404) 424-9753

Live Chat

Business Hours

  • Monday-Friday: 9am to 6pm EDT (UTC/GMT -4)
  • Saturday/Sunday: Closed