SSL Setup and Certificates in NTWS

[johanl]

Hello

I ma new to the whole SSL setup and as such my not understand certain terms correctly but I have to use SSL and the people responsible for the clients network created certificates with thawte.

Here are my questions:

1. How/where do I get the .Key and CRT file (only file provided by IT was a .p7b file, no existing secure site exists on the server)
2. I understand the certificates must be named according to the site URL and that the certificates must be in the correct directory, but the port in my case has to be 444 as 443 is used already is it advisable to bind the IP or not?

Any help will be appreciated
Johan

[Bruce]

>> How/where do I get the .Key and CRT file (only file provided by IT was a .p7b file

google something like;
openssl convert p7b to crt

>> I understand the certificates must be named according to the site URL

not in the "dos file" sense. They can be named anything on the disk (as long as your program knows the name). However _inside_ the certificate is the name of the site, and this must match the URL people use to get to your site.

>> but the port in my case has to be 444 as 443
the port is not part of the certificate at all, so has nothing to do with this. Obviously you need to include the port number in the URL for the client to get to your site, but that part of the URL does not need to match anything in the certificate.

>> is it advisable to bind the IP or not

that's a separate question, and is up to you. If you want to limit the program to a single IP address on the machine then yes. If you want it accessible through all IP addresses, then no.

Cheers
Bruce