A Quick Note on GoDaddy TurboSSL Certificates
At Bravadosoft for our first implementations we’ve purchased individual SSL certificates from GoDaddy. The TurboSSL is only $29.99 and it’s a great way to get going quickly.
A problem we’ve had though is that most modern browsers will throw the “Unknown Certificate Authority” problem at the user if you only use the .crt file they give you. It kinda scares the users.
The solution is simple–you need to “chain” the certificate for your site along with GoDaddy’s intermediate certificate together. Point your web server (Apache, Lighty, Nginx, whatever) at that newly concatenated certificate and you’re good.
I found this post on the process and simplified it a bit for Nginx. The Nginx wiki has a small blurb about this:
if you have a chain certificate file (sometimes called an intermediate certificate) you don’t specify it separately like you do in Apache. Instead you need to add the information from the chain cert to the end of your main certificate file. This can be done by typing “cat chain.crt >> mysite.com.crt” on the command line. Once that is done you won’t use the chain cert file for anything else, you just point Nginx to the main certificate file.
This worked as advertised for us.
Read more from the Infrastructure category. If you would like to leave a comment, click here: . or stay up to date with this post via RSS, or you can
Trackback from your site.