WebSTAR 4.x

Preparing to install your Trustwave® SSL certificate

To install your Trustwave® SSL certificate, you will need to download your certificate in PEM concatenated form from the Trustwave® Control Center.

Almost all WebSTAR installations will require a PEM concatenated certificate for the installation, but there are a few older versions which require a Netscape sequenced format, sometimes called NSEQ. If you are unable to install your certificate with the PEM concatenated file, download the Netscape sequenced format certificate from the Trustwave® Control Center.

Verify that your server has SSL capabilities enabled. You will have these capabilities if your WebSTAR Administration application shows an "SSL Security" item in the list of settings.

Installing your Trustwave® SSL Certificate

Click "SSL Security" in the WebSTAR Administration application. You should see IP addresses at the top with security information at the bottom. Please remember - you must use separate IP addresses for each SSL certificate that you install.

Click the IP address that will require SSL security. On the Security popup menu, check SSL2 and SSL3. Trustwave® recommends, for security reasons, that only SSL3 be enabled. SSL2 ciphers have been shown to have several security holes and SSL3 has become the new industry standard. If you do choose to disable SSL2, you will create a more secure system for your customers, but any customers without SSL3 capabilities (which is a very minute percentage of users) will not be able to connect securely to your site.

Click the "Certificate Choose" button and select the PEM concatenated file that you downloaded from the Trustwave® Control Center. Click on the "Private Key File Choose" button and select the private key that was used to generate the CSR. You will be asked to provide your private key password. Click "Save".

Check the Server Status window for a message similar to this one: "SSL context for [ip address]:443 created". Check your cipher settings and then click Save to set the information.

Certificate Analyzer

Once you have completed your certificate installation you can use our instant online troubleshooter to verify your installation and help resolve problems.
Certificate Analyzer→

Go Green