Application guy gave me two .pem files for two sites.i will need to replace it in proper path in the web server .

Kindly help me step by step process to accomplish that.

my old certs are in the below path :::

/etc/httpd/certs/ServerCertificaatMKCPink.crt
/etc/httpd/certs/mijnklantcontact.kpn.com/onsiteCA-2013.crt
/etc/httpd/certs/mijnklantcontact.kpn.com/mijnklantcontact-2014.crt
/etc/httpd/certs/mijnklantcontact.kpn.com/onsiteCA-2012.crt
/etc/httpd/certs/mijnklantcontact.kpn.com/onsiteCA-2011.crt
/etc/httpd/certs/mijnklantcontact.kpn.com/mijnklantcontact-2011.crt
/etc/httpd/certs/mijnklantcontact.kpn.com/mijnklantcontact-2018.crt
/etc/httpd/certs/mijnklantcontact.kpn.com/mijnklantcontact-2012.crt
/etc/httpd/certs/mijnklantcontact.kpn.com/mijnklantcontact-2013.crt
/etc/httpd/certs/mijnklantcontact.kpn.com/mijnklantcontact-2015.crt
/etc/httpd/certs/mijnklantcontact-2015.crt
/etc/httpd/certs/callmenow.callmenow.nl/callmenow-2012.crt
/etc/httpd/certs/callmenow.callmenow.nl/callmenow-2014.crt
/etc/httpd/certs/callmenow.callmenow.nl/callmenow-2015.crt
/etc/httpd/certs/callmenow.callmenow.nl/callmenow-2018.crt
/etc/httpd/certs/callmenow.callmenow.nl/callmenow-2010.crt
/etc/httpd/certs/callmenow.callmenow.nl/callmenow-2013.crt
/etc/pki/tls/certs/ca-bundle.trust.crt
/etc/pki/tls/certs/localhost.crt
/etc/pki/tls/certs/ca-bundle.crt
/etc/pki/ca-trust/extracted/openssl/ca-bundle.trust.crt
/usr/share/pki/ca-trust-source/ca-bundle.neutral-trust.crt
/usr/share/pki/ca-trust-source/ca-bundle.trust.crt
/usr/local/src/perl/libapreq2-2.13/module/t/conf/ssl/ca-bundle-duplicates.crt
/usr/local/src/perl/libapreq2-2.13/module/t/conf/ssl/ca-bundle-sample.crt
/opt/conf/server.crt

i know how to convert file from .pem to .crt .But bit confused where will we actually place the .crt file

Kindly need your help

You don't tell us the version/distro of Linux you're using, version of Apache, or what you've done/tried/researched so far.

Your 'application guy' may be able to help you, but if you're the systems administrator, then where did YOU set your system up to look for these things??? These things are defined in your Apache/SSL setup, and where you tell things to go look.

distro :

Linux mkc-web 2.6.32-431.11.2.el6.x86_64 #1 SMP Tue Mar 25 19:59:55 UTC 2014 x86_64 x86_64 x86_64 GNU/Linux

apache version :

Server version: Apache/2.2.15 (Unix)
Server built: Apr 3 2014 23:56:16

i didnt do anything till now just google how to convert files.Kindly help

Did you not build this machine and configured Apache?
If Apache was installed from repo, then config files should be under /etc/httpd/
You can look at the config files for location of cert files.

no i didnt configure it and handling first time apache.these are the conf file .

/etc/httpd/conf.d/proxy_ajp.conf
/etc/httpd/conf.d/jk_ajp.conf
/etc/httpd/conf.d/squid.conf
/etc/httpd/conf.d/ssl.conf
/etc/httpd/conf.d/perl.conf
/etc/httpd/conf.d/welcome.conf
/etc/httpd/conf.d/php.conf
/etc/httpd/conf/extra/httpd-mijnklantcontact.conf
/etc/httpd/conf/extra/httpd-ssl-callmenow444.conf
/etc/httpd/conf/extra/httpd-ssl-mijnklantcontact444.conf
/etc/httpd/conf/extra/httpd-ssl-mijnklantcontact_bkp.conf
/etc/httpd/conf/extra/httpd-ssl-callmenow.conf
/etc/httpd/conf/extra/httpd-ssl-callmenow_bkp.conf
/etc/httpd/conf/extra/httpd-ssl-mijnklantcontact.conf
/etc/httpd/conf/extra/httpd-callmenow.conf
/etc/httpd/conf/httpd.conf

kindly tell me which is the original file and metric need to check in it for location of the cert files

Start with ssl.conf. Look at that file to determine location for Apache certs.

Did the previous admin not give you any documentation on the build?

no i didnt get ant sop. i checked the file only these 3 line are commented out

LoadModule ssl_module modules/mod_ssl.so
Listen sntws1-ext-65:443
Listen sntws1-ext-66:443

what line i need to check for location of certs

You need to review un-commented lines.

Perhaps, also read the documentation on Apache site:
https://httpd.apache.org/docs/2.2/ssl/ssl_howto.html

Here is a good example:
https://www.namecheap.com/support/kn...cate-on-apache

1 members found this post helpful.

This and your other posts seem to indicate that you're trying to do the job of an administrator, but don't have any knowledge of how to do the job. Again, as you were told, the config files (as dc.901 said, the ssl.conf file) have locations for these things defined. LOOK AT THEM, and it will tell you. If they're not there, YOU will have to do some work to configure these things.

If you're trying to configure multiple sites with multiple security certificates, that's going to be a bit involved. We aren't going to write up a step-by-step guide for you on how to do the job you were hired to do. If you're stuck, it would be best if you told your boss that this isn't something you can do easily, and to get someone to help you.

1 members found this post helpful.

Update the relevant apache config files...I have one config file for each secure domain in the /etc/httpd/conf.d directory, but that may not be how your setup is done. You will need to figure out where the SSLCertificate* settings are configured in your installation and edit those.

As has been said, if you don't know how or what to update within your config files, you should seek help from within your organization; an error in a config file can keep the apache server from starting up at all.