Solution Timeline

All versions (edits) of solutions to Need Help Installing SSL appear below in the order they were created. Comments that appear under revisions were those created when that particular revision was current.

To see the revision history of a single solution (with diffs), click on the solution number (ie. "#1") in the upper right corner of a solution revision below.

← Bounty Expand all edits

Hi

just try to follow the point in the following website : http://docs.aws.amazon.com/en_en/AWSEC2/latest/UserGuide/SSL-on-an-instance.html#ssl_enable

From what I see when I connect to your server, Chrome tells me that your current certificate is expired (expired on 10 septembre 2017 and signed by GlobalSign), I think it's the old one.

For the 502 error, it seems not to be a certiificate issue but a server one, to debug this you will need to check the error log on your server (file /var/log/httpd/error_log)

I think the new certificate is not configured properly. Because your website is still showing certificate expired error msg.

these steps might help -

1) After obtaining (downloading) a new set of certificate, do this in terminal.

$ cat intermediateCA.crt >> SSL_Certificate.crt

2) Move / Copy certificates to /etc/ssl/

3) Go to your Nginx config file, find and replace these lines to matching your certificate.

ssl_certificate /etc/ssl/[concatenated file];
ssl_certificate_key /etc/ssl/[private key file];

4) Adjust the file names to match your certificate files:

ssl_certificate should be your concatenated file created in Step 3.

ssl_certificate_key should be the key file generated when you created the CSR.

5) Restart Nginx.

follow for more info.
https://knowledge.rapidssl.com/support/ssl-certificate-support/index?page=content&id=SO17664

I think the new certificate is not configured properly. Because your website is still showing certificate expired error msg.

these steps might help -

1) After obtaining (downloading) a new set of certificate, do this in terminal.

$ cat intermediateCA.crt >> SSL_Certificate.crt

2) Move / Copy certificates to /etc/ssl/

3) Go to your Nginx config file, find and replace these lines to matching your certificate.

ssl_certificate /etc/ssl/[concatenated file];
ssl_certificate_key /etc/ssl/[private key file];

4) Adjust the file names to match your certificate files:

ssl_certificate should be your concatenated file created in Step 1.

ssl_certificate_key should be the key file generated when you created the CSR. (generally this remains the same)

5) Restart Nginx.

follow for more info.
https://knowledge.rapidssl.com/support/ssl-certificate-support/index?page=content&id=SO17664

You need to create a CSR (certificate signing request) that contains the server's information. (There are many, many guides on how to do this using openssl.) You then purchase a SSL certificate from your certificate issuer of choice and provide them with the CSR. When your order is complete they will issue you a SSL certificate that you can download and install in Apache. If you go to the issuer of the original certificate they will likely have a renew process that will walk you through all of the steps.