SSL Certificate Renewal

The SSL Certificate are applied or renewed at University IT. A copy of it is in the inbox of daslab Gmail account. They are stored at /home/ubuntu/.ssl_cert/ on the server.

The final version used by aws iam is primerize_stanford_edu.key (Private Key), primerize_stanford_edu.crt (Public Key), and primerize_stanford_edu.ca-bundle (Chain Certificates). Details of Apache settings is at /etc/apache2/sites-enabled/000-default.conf.
The Private Key is self-signed. The original file is at /home/ubuntu/.ssl_cert/cert_self_sign/primerize_self_sign.key.
The Public Key is signed by InCommons. The original file is at /home/ubuntu/.ssl_cert/cert_InCommon/X509CO.cer.
The Chain Certificates is a concatenated version of /home/ubuntu/.ssl_cert/cert_InCommon/X509IO.cer and /home/ubuntu/.ssl_cert/cert_InCommon/X509CO.cer. It has 4 components in order: Root_AddTrustExternalCA.crt, Intermediate_1_USERTrustRSAAddTrust.crt, Intermediate_2_InCommonRSAServerCA.crt, and Primary_primerize_stanford.crt; which can be found in /home/ubuntu/.ssl_cert/cert_InCommon/parsed/.
The renew code is present both in the original email and /home/ubuntu/.ssl_cert/cert_info.txt.

Designed, built and managed by t47 @ Stanford Medicine.

Home

Manual

New Admin Setup

Admin Responsibility

Server Environment

Reference

Overview

Linux

Apache

MySQL

Python

Javascript

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

SSL Certificate Renewal

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Home

Manual

Reference

Clone this wiki locally