很多理論知識這里就不提了，如果要深入了解建議先去了解下理論再來看會很容易看懂，下面直接操了。?


環(huán)境：?
CentOS release 6.8 (Final)?
apache-2.4.25?


1、查看現(xiàn)有apache是否有編譯安裝過ssl模塊?
/usr/local/apache/bin/apachectl-l2、沒有的話需要添加ssl模塊，apache是以嵌入的方式添加模塊的?
/usr/local/apache/bin/apxs-i-c-a-L/usr/lib64/openssl/engines/lib-c*.c-lcrypto-lssl-ldl/usr/local/apache/bin/apxs-c-imod_ssl.c/usr/local/apache/bin/apxs-c-imod_ssl.loll/usr/local/apache/modules|grepssl3、開啟ssl擴展功能?
sed-i's/\#Includeconf\/extra\/httpd-ssl.conf/Includeconf\/extra\/httpd-ssl.conf/'/usr/local/apache/conf/httpd.confsed-n'140p'/usr/local/apache/conf/httpd.confLoadModulessl_modulemodules/mod_ssl.so4、生成不可信任額證書，公鑰加密，私鑰解密。私鑰加密，公鑰解密?
生成服務(wù)器私鑰?
opensslgenrsa-des3-outserver.key2048生成服務(wù)器證書請求，并按照要求填寫相關(guān)證書信息?
opensslreq-new-keyserver.key-outserver.csr簽證：?
opensslx509-req-days3650-inserver.csr-signkeyserver.key-outserver.crt5、修改虛擬主機?

sed-n'22,33p'/usr/local/apache/conf/extra/httpd-vhosts.conf#<VirtualHost*:443>ServerAdmin1009422178@qq.comDocumentRoot"/var/www/html"ServerNamewww.www.fangqiweb.orgServerAliaswww.fangqi.web.orgSSLEngineonSSLCertificateFile/usr/local/apache/conf/server.crtSSLCertificateKeyFile/usr/local/apache/conf/server.keyErrorLog"logs/error/www-error_log"CustomLog"|/usr/local/sbin/cronolog/service/apache/logs/access/www-%Y%m%d_log"combined</VirtualHost>6、添加監(jiān)聽端口?
sed-i'53a\Listen443'httpd.conf?

7、檢查語法，重啟apache?
/usr/local/apache/bin/apachectl-t/usr/local/apache/bin/apachectlrestart?

8、測試訪問?

9、如果訪問不了?
防火墻是否允許了https通過?
vhost配置文件是否配置錯誤?
apache的主配置文件是否有錯誤，或者缺少vhost里的目錄位置信息?
apache的監(jiān)聽端口是否開啟?
apache是否有正確添加ssl模塊?


常見錯誤：?
/usr/local/apache/bin/apachectl -t?
httpd: Syntax error on line 141 of /usr/local/apache-2.4.25/conf/httpd.conf: Cannot load modules/mod_ssl.so into server: /usr/local/apache-2.4.25/modules/mod_ssl.so: undefined symbol: ssl_cmd_SSLPassPhraseDialog?
解決：?
/usr/local/apache/bin/apxs -a -i -c -L /usr/lib64/openssl/engines/lib -c *.c -lcrypto -lssl -ldl

了解更多網(wǎng)絡(luò)知識關(guān)注：http://www.vecloud.com/