Nginx and VeriSign SSL Certificates

Although instructions are provided for many web servers/systems there are no instructions on the VeriSign web site on how to setup Nginx.

One tip that may save you a couple of minutes is that your Nginx SSL configuration will not work correctly with the VeriSign provided Apache CA bundle of intermediate certificates.

To get a certificate bundle that will work properly I suggest the following steps.

  • First download both the Primary Intermediate CA Certificate and the Secondary SSL Intermediate CA Certificate files.
  • Second, concatenate your certificate, then the primary CA certificate, then the secondary certificate into a single file.
  • Third reference the resulting file in your nginx SSL configuration, verify your configuration, and restart nginx.

To ensure everything is setup correctly you can verify your site using the VeriSign Certificate Check application.

Advertisements