This guide will show you how to generate a CSR code and install an SSL Certificate on LiteSpeed. It will also tell you a few interesting facts about LiteSpeed and reveal the best place where you can buy affordable SSL Certificates for your LiteSpeed server.
If you’ve already generated a CSR code and applied for your certificate, skip this step and start following the installation instructions. Use the links below to navigate between different sections:
Generate a CSR code on LiteSpeed
To apply for an SSL Certificate, you must generate a CSR (Certificate Signing Request) code and send it to your CA for validation. The CSR contains your contact data in an encoded format. In this guide, we’ll use the OpenSSL utility to generate your CSR code. If you’ve never used it before, and aren’t comfortable entering command prompts, use the quick and easy CSR Generator tool instead.
Along with your CSR code, you will also generate your private key. These two files from the certificate key pair and cannot be separated.
- Run the following command to generate your private key:
Openssl genrsa –out server.key 2048
Note: The word “server” is the name of your private key. You can give it any name you want, but make sure you keep the .key extension.
- Now, run another command to generate your CSR code:
Openssl req –new –key server.key –out server.csr
Note: If you’ve used another name for your private key instead of “server” include it in the command. As for server.csr part, you can rename it, but make sure you keep the .csr extension.
- Next, the command will ask you to provide the following contact details:
- Common Name (CN): enter the FQDN (fully-qualified domain name) you want to protect. For instance, yoursite.com. If you have a wildcard certificate, add an asterisk (*) in front of your domain name (e.g., *.yoursite.com)
- Organization Name (O): specify the full legal name of your company. For example, Your Company LLC
- Organizational Unit (OU): name the department within your company requesting the SSL Certificate. For example, IT
- Locality or City (L): write the full name of the city where your company is registered. For example, Albuquerque
- State or Province (ST): type the full name of the state or province where your company is legally located. For instance, New Mexico
- Country (C): provide the two-letter code of your country. For example, US. You can see the full list of country code here.
- That’s it! You’ve successfully generated your CSR code. It resides in the directory where you run the command.
- Locate and open the .csr file with any text editor of your choice such as Notepad. You will need to copy its content including the BEGIN and END tags and paste it during the SSL order with your SSL vendor.
Install an SSL Certificate on LiteSpeed
After your CA signs and sends your SSL certificate to your inbox, you can proceed to the installation. Here’s what you will need:
- Your primary SSL certificate: this is the certificate issued specifically for your domain. You can find it in the ZIP folder, sent to you via email.
- Your intermediate certificate: this certificate, or sometimes certificates help browsers identify the issuing CA. Intermediate certificates are usually stored in the .ca-bundle file. You’ll have to extract it from the ZIP folder.
- Your Private Key: the private key is on your server, in the same directory where you generated the CSR request. If you didn’t generate the CSR on your server, you should have a copy of the private key in your email.
Please follow the steps below to install your SSL Certificate:
- Log into your LiteSpeed WebAdmin console
- On the left pane, select Listeners and then click Add
- In the address settings section, fill in the fields as shown below and then click Save
- Listener Name: set a friendly name for your Listener
- IP Address: If you want to bind the Listener to a specific CPU, enter the unique IP; otherwise, from the drop-down list select Any
- Port: the default port for HTTPS connections is 443
- Secure: choose Yes
- Notes: you can leave this field blank
- Go back to your admin console and click Listeners and under the Listener Name column, select the name you’ve just given in the previous step.
- Under your Listener, select the SSL tab, and in the SSL Private Key and Certificates table click the Edit button
- Next, you have to configure your file paths as shown below:
- Private Key File: enter the path to your private key. Remember you’ve generated the private key along with the CSR in the same directory on your server
- Certificate File: browse your primary SSL Certificate and add it
- Chained Certificates: select Not Set
Note: To install the intermediate certificates, select one of the two options below:
- CA Certificate Path: if you pick this option, enter the path to the intermediate certificate file that your CA provided
- CA Certificate File: if you choose this field, enter the directory where your intermediate certificates reside
- Click Save
- Back in the SSL tab, under your Listener, in the SSL protocol table, click the Edit button
- For Protocol Version, check the latest TLSv1.1 and TLSv1.2 versions, then hit Save
- Return to the admin console, click Listeners and select your Listener’s name
- In the General tab, navigate to the Virtual Host Mappings and click the Add button
- From the drop-down list select the virtual host you want to assign to the listener
- Next, enter the Domain(s) that connect to your vhost(s). Use a comma to separate multiple domains
- On the left pane, click Dashboard then click the Green Restart button to restart your server.
Congratulations, you’ve successfully installed your certificate on LiteSpeed.
Test your SSL Installation
After you install an SSL Certificate on LiteSpeed, you can check your configuration for potential errors or vulnerabilities. To do this efficiently, use one of these high-end SSL tools. Pick any tool from the linked article, and get instant scans and reports on your SSL Certificate.
LiteSpeed history and versions
LiteSpeed is a web server software developed by LiteSpeed Technologies. The software is an Apache drop-in replacement, using the same configuration format as Apache. As a result, LiteSpeed is compatible with many Apache features such as mod_rewrite, .htaccess and mod_security.
LiteSpeed Technologies was funded in 2002 by a George Wang. In 2003 the company released the first version of LiteSpeed Web Server. In 2007, LiteSpeed Web Server became LiteSpeed Web Server Enterprise and was configured to be an Apache drop-in replacement. In 2015, LiteSpeed Web Server integrated with cPanel, Plesk, and DirectAdmin.
The latest stable release of LiteSpeed at the time of this article is LSWS 5.2.8.
Where to buy the best SSL certificate for LiteSpeed?
If you’re looking for a great shopping experience, then SSL Dragon is a great option. Our intuitive and user-friendly website will smoothly walk you through the entire range of SSL Certificates. All our products are signed by trusted Certificate Authorities and are compatible with LiteSpeed Web server. We offer the following SSL validation types:
- Domain Validation
- Business Validation
- Extended Validation
- Code Signing
- IP Address
Enjoy the lowest prices on the market, and stellar customer support for any certificate you choose. And, if you’re struggling to find the perfect cert for your project, our SSL Wizard and Advanced Certificate Filter tools are ready to help you.
If you find any inaccuracies, or you have details to add to these SSL installation instructions, please feel free to send us your feedback at [email protected]. Your input would be greatly appreciated! Thank you.