#--When CA sends certificate, save the certificate as (you can copy/paste the certificate into this file):

/etc/httpd/conf/ssl.crt/server.crt

# Symantec needs an intermediate certificate to be installed for Server Gated Cryptography (SGC) certificates.
#--For other cert agencies, refer to their instructions

#--Copy the intermediate certificate from the following Symantec location
https://www.verisign.com/support/ssl-certificates-support/install-ssl-certificate.html

#--Save this intermediate certificate into a text file and name it intermediate.crt at the following location

/etc/httpd/conf/ssl.crt/intermediate.crt

#--You also need to provide the intermediate cert location in the apache conf file (see apache configuration below).

# Apache configuration for SSL

#--Once you create a Test Cert or get an actual Cert, you need to modify the Apache configuration file for SSL support

#--Normally the file /etc/httpd/conf.d/ssl.conf can be modified.
#--But instead of ssl.conf file, you can modify httpd.conf file, so that only one file needs to be maintained.
#--But do comment out the port 443 host assignment line in the ssl.conf file.

#--Add the following rules to the httpd.conf file.

<IfModule mod_ssl.c>
<VirtualHost *:443>
  ServerName www.yourcompany.com
  SSLEngine on
  SSLCertificateFile /etc/httpd/conf/ssl.crt/server.crt
  SSLCertificateKeyFile /etc/httpd/conf/ssl.key/server.key
  SSLCertificateChainFile /etc/httpd/conf/ssl.crt/intermediate.crt
  SetEnvIf User-Agent ".*MSIE.*" nokeepalive ssl-unclean-shutdown
  RewriteEngine on

  RewriteRule ^/(.*)logout http://www.yourcompany.com:80/$1logout [NC,R=301,L]
  RewriteRule ^/(.*) http://localhost:8080/VirtualHostBase/https/localhost:443/yourcompany/VirtualHostRoot/$1 [P,L]

</VirtualHost>
</IfModule>

#--restart apache. Use SSL start option. If you have chosen the password option during key generation, you will be asked for it.

apachectl stop
apachectl sslstart