Menu Home

StartSSL and Nginx

I converted this blog from Apache2 to Nginx but forgot a step for SSL. With Apache2 to correctly install the SSL cert, you need to include in your config ca.pem and See here for more information.

I didn’t realize I had a problem until I pointed my iPhone at my SSL enabled web site.

With Nginx you’ve got

 ssl  on;
 ssl_certificate  /etc/nginx/ssl/blog.crt;
 ssl_certificate_key  /etc/nginx/ssl/blog.key;

Nginx doesn’t do SSL certificate chaining like Apache2 does. In order to get the ca.pem and onto your install just append the two files to your certificate file.

curl >>blog.crt
curl >>blog.crt

I restarted my Nginx server and had no problems since. I continue to be impressed with StartSSL and at some point I will want to purchase a wild card cert for my domain.

Categories: Geek

Tagged as:

Jan Dembowski

12 replies

  1. Hi,

    Thanks for clarifying how to do this.

    A while ago, I too switched to StartSSL. However, I was also unaware of this problem since I at some point had added a permanent exception in Firefox.

    All my SSL-sites work like a charm now 🙂

    I also agree that purchasing a wild card cert is probably worth the money, but that will have to happen later.