Configure SSL on Apache HTTP Server

You must configure SSL on Apache HTTP server for secure communications.

Enabling SSL on the Apache HTTP server provides a secure and encrypted connection to the client as the Apache HTTP server authenticates itself to the client.

Enabling the SSL communication requires the mod_ssl Apache module. The mod_ssl Apache module provides strong encryption using the secure sockets layer (SSL) and transport layer security (TLS) protocols for the HTTP communication between a client and the Apache HTTP server. Using SSL/TLS, a private connection between the Apache HTTP server and the client is established. Data integrity is ensured and the client is able to authenticate the server. In this case, the Apache HTTP server sends its digital certificate to the client before any request is processed.

The mod_ssl Apache module on the server guarantees to the client that the server is a uniquely correct end point for the communication. The client uses the public key contained in the digital certificate to encrypt the communication between the client and the server. The mod_ssl Apache module does not implement the SSL/TSL protocols itself, but it acts as an interface between the Apache module and the OpenSSL library.

For the configuration steps, see Configuring Mutual SSL on Apache HTTP Server.