- First thing first, we need to create that self-signed SSL certificate, so go to DOS command prompt (Start menu -> Run -> cmd).
- ext, we need to navigate to the directory that contains the openssl executive file which is located in folder C:\wamp\bin\apache\apache2.2.14\bin by default. In order to go there, we need to type the command as follows.
Code:
cd\wamp\bin\apache\apache2.2.14\bin
- After press Enter, your prompt should change as follows
Code:
c:\wamp\bin\apache\apache2.2.14\bin>
From there, we begin to create the self-signed SSL certificate and the first command you have to type is as follows.
Code:
openssl
genrsa -aes256 -out pass.key 2048
- After press Enter and wait a
little while, it should ask you for a pass phrase. Just type in anything
but make sure you have to remember that for later use. Of course, it will
ask you to verify the pass phrase.
You may type test for testing. - Now, we will create the key for our server. In this tutor guide for HTTPS SSL on WAMP, we will use our domain test, but you should use your domain or design name instead.
Code:
openssl
rsa -in pass.key -out test.key
- Next, it will ask you to enter the pass phrase that you have created before. Wait a little while for it to write the key for your server.
- Now is the time to type in the command to create our self-signed SSL certificate; since this command is quite long, you will see it takes more than one line, so make sure not to press the Enter key until you finish the whole command.
Code:
openssl
req -new -x509 -nodes -sha1 -key test.key -out test.crt -days 999 -config
C:\wamp\bin\apache\apache2.2.14\conf\openssl.cnf
- After press Enter, it will ask you to input 2 letters that presents your country. You can enter LK, US, IN, JP, etc... that represents your country. Next you have to input your State or Province, City, Organization Name, Organization Unit Name, Common Name and Email address.
- Guess what, you just got yourself a self-signed SSL certificate. Now, open folder c:\wamp\bin\apache\apache2.2.14\conf and create a new folder "ssl" (without quotes).
- Then, from folder c:\wamp\bin\apache\apache2.2.14\bin, copy 2 files key and crt to ssl folder. (test.key, test.crt)
- Create another folder named as "logs" inside c:\wamp\bin\apache\apache2.2.14\conf\ssl. We save all HTTPS transaction and error logs in this folder.
- After that, go to folder c:\wamp\bin\apache\apache2.2.14\conf\extra to open file httpd-ssl.conf.
- Find this line:
Code:
SSLSessionCache
"shmcb:C:/Program Files/Apache Software
Foundation/Apache2.2/logs/ssl_scache(512000)"
Replace with:
Replace with:
Code:
SSLSessionCache
"shmcb:C:/wamp/bin/Apache/apache2.2.14/conf/ssl/logs/ssl_scache(512000)"
- Next find this line:
Code:
SSLCertificateFile
"C:/Program Files/Apache Software
Foundation/Apache2.2/conf/server.crt"
Remember to substitute expertcore with your domain to replace with:
Remember to substitute expertcore with your domain to replace with:
Code:
SSLCertificateFile
"C:/wamp/bin/Apache/apache2.2.14/conf/ssl/test.crt"
- Then find:
Code:
SSLCertificateKeyFile
"C:/Program Files/Apache Software
Foundation/Apache2.2/conf/server.key"
Again, substitute expertcore with your domain to replace:
Again, substitute expertcore with your domain to replace:
Code:
SSLCertificateKeyFile
"C:/wamp/bin/Apache/apache2.2.14/conf/ssl/test.key"
- Then find:
Code:
SSLMutex
"file:C:/Program Files/Apache Software
Foundation/Apache2.2/conf/ssl/logs/ssl_mutex"
Replace with:
Replace with:
Code:
SSLMutex
default
- In Virtual Host, find these lines:
Code:
#
General setup for the virtual host
DocumentRoot "C:/Program Files/Apache Software Foundation/Apache2.2/htdocs"
ServerName localhost:443
ServerAdmin admin@localhost
ErrorLog "C:/Program Files/Apache Software Foundation/Apache2.2/logs/error_log"
TransferLog "C:/Program Files/Apache Software Foundation/Apache2.2/logs/access_log"
HTTPS SSL is the secure transaction which is good for sensitive informations such as Credit card numbers, membership accounts... however, it might slow down your server performances if everything go through it; thus, we suggest that you only set it to the specific directory that you want to use for SSL, and in this example, we use folder ssl:
DocumentRoot "C:/Program Files/Apache Software Foundation/Apache2.2/htdocs"
ServerName localhost:443
ServerAdmin admin@localhost
ErrorLog "C:/Program Files/Apache Software Foundation/Apache2.2/logs/error_log"
TransferLog "C:/Program Files/Apache Software Foundation/Apache2.2/logs/access_log"
HTTPS SSL is the secure transaction which is good for sensitive informations such as Credit card numbers, membership accounts... however, it might slow down your server performances if everything go through it; thus, we suggest that you only set it to the specific directory that you want to use for SSL, and in this example, we use folder ssl:
Code:
#
General setup for the virtual host
DocumentRoot "C:/wamp/www/ssl"
ServerName test:443
ServerAdmin admin@localhost
ErrorLog "C:/wamp/bin/Apache/apache2.2.14/conf/ssl/logs/ssl_error.log"
TransferLog "C:/wamp/bin/Apache/apache2.2.14/conf/ssl/logs/ssl_access.log"
DocumentRoot "C:/wamp/www/ssl"
ServerName test:443
ServerAdmin admin@localhost
ErrorLog "C:/wamp/bin/Apache/apache2.2.14/conf/ssl/logs/ssl_error.log"
TransferLog "C:/wamp/bin/Apache/apache2.2.14/conf/ssl/logs/ssl_access.log"
- Then find:
Code:
<Directory
"C:/Program Files/Apache Software Foundation/Apache2.2/cgi-bin">
SSLOptions +StdEnvVars
</Directory>
Modify to become as below:
SSLOptions +StdEnvVars
</Directory>
Modify to become as below:
Code:
<Directory
"C:/wamp/www/ssl">
SSLOptions +StdEnvVars
Options Indexes FollowSymLinks MultiViews
AllowOverride All
Order allow,deny
allow from all
</Directory>
SSLOptions +StdEnvVars
Options Indexes FollowSymLinks MultiViews
AllowOverride All
Order allow,deny
allow from all
</Directory>
- Then find:
Code:
CustomLog
"C:/Program Files/Apache Software
Foundation/Apache2.2/logs/ssl_request_log" \"%t %h %{SSL_PROTOCOL}x
%{SSL_CIPHER}x \"%r\" %b"
And change it as below:
And change it as below:
Code:
CustomLog
"C:/wamp/logs/ssl_request.log" \
"%t %h %{SSL_PROTOCOL}x %{SSL_CIPHER}x \"%r\" %b"
"%t %h %{SSL_PROTOCOL}x %{SSL_CIPHER}x \"%r\" %b"
- Next, open file httpd.conf in folder c:\wamp\bin\apache\apache2.2.14\conf and find these lines:
Code:
#
Secure (SSL/TLS) connections
#Include conf/extra/httpd-ssl.conf
Uncomment the second line, and make sure there is no blank space in front of second line and in the end of first line or your wamp will not run:
#Include conf/extra/httpd-ssl.conf
Uncomment the second line, and make sure there is no blank space in front of second line and in the end of first line or your wamp will not run:
Code:
#
Secure (SSL/TLS) connections
Include conf/extra/httpd-ssl.conf
Include conf/extra/httpd-ssl.conf
- After save and close all files, left click on WAMP tray icon and navigate to Apache modules and scroll down until you get ssl_module; then, left click on it to enable SSL on WAMP.
- Next, navigate to PHP extensions and scroll down until you get php_openssl; then, left click on it to enable open_ssl on WAMP.
- Left click on the WAMP tray icon and click on Restart all services.
- After that, open folder C:\wamp\bin\apache\apache2.2.11\bin and copy 2 files libeay32.dll and ssleay32.dll and paste them in folder C:\Windows\System32.
- Now is the time to test our HTTPS SSL on WAMP, so open your desire text editor and create a simple webpage index.html which is then saved in folder C:\wamp\www\ssl as follows:
Code:
<html>
<body>
<font size="5" color="red">test SSL successful</font>
</body>
</html>
<body>
<font size="5" color="red">test SSL successful</font>
</body>
</html>
- Now is the time to run the created test file; open your desire browser and input the address bar as below, remember to replace test with your domain or design name:
Code:
https://test....
- Oops, error... If using Firefox, you can left click on the line "Or you can add an exception...". Again, left click on the button "Add Exception".
- On the popup windows, left click on the button "Get Certificate".
- You have to left click on the button "Confirm Security Exception".
- The moment of success that
show up the red line in your browser.
SSL successful