// API callback
av({"version":"1.0","encoding":"UTF-8","entry":{"xmlns":"http://www.w3.org/2005/Atom","xmlns$blogger":"http://schemas.google.com/blogger/2008","xmlns$georss":"http://www.georss.org/georss","xmlns$gd":"http://schemas.google.com/g/2005","xmlns$thr":"http://purl.org/syndication/thread/1.0","id":{"$t":"tag:blogger.com,1999:blog-875899154744260851.post-8859801423020703593"},"published":{"$t":"2018-09-17T01:47:00.001-07:00"},"updated":{"$t":"2020-09-06T19:51:17.895-07:00"},"category":[{"scheme":"http://www.blogger.com/atom/ns#","term":"Linux"},{"scheme":"http://www.blogger.com/atom/ns#","term":"System Administrator"},{"scheme":"http://www.blogger.com/atom/ns#","term":"teknologi"}],"title":{"type":"text","$t":"Cara Pasang SSL HTTPS di Linux Centos 7"},"content":{"type":"html","$t":"\u003Cbr \/\u003E\n\u003Cdiv class=\"separator\" style=\"clear: both; text-align: center;\"\u003E\n\u003Ca href=\"https:\/\/1.bp.blogspot.com\/-LU3s1FH58TU\/W59p7WCowcI\/AAAAAAAAAyY\/pTbZFARSi2IRXXMbkdHzI_AHBmzUwPqHQCLcBGAs\/s1600\/Mozunote.com-OpenSSL.jpeg\" imageanchor=\"1\" style=\"margin-left: 1em; margin-right: 1em;\"\u003E\u003Cimg alt=\"Mozunote.com-OpenSSL\" border=\"0\" data-original-height=\"283\" data-original-width=\"670\" height=\"270\" src=\"https:\/\/1.bp.blogspot.com\/-LU3s1FH58TU\/W59p7WCowcI\/AAAAAAAAAyY\/pTbZFARSi2IRXXMbkdHzI_AHBmzUwPqHQCLcBGAs\/s640\/Mozunote.com-OpenSSL.jpeg\" title=\"Mozunote.com-OpenSSL\" width=\"640\" \/\u003E\u003C\/a\u003E\u003C\/div\u003E\n\u003Cbr \/\u003E\n\u003Cbr \/\u003E\n\u003Cbr \/\u003E\n\u003Cdiv style=\"text-align: justify;\"\u003E\nUntuk sedikit mengamankan HTTP di webserverkita, alangkah lebih baiknya kita pasang SSL (Secure Socket Layer) sehingga akses di website kita menjadi HTTPS. Teknologi\u0026nbsp; enkripsi ini bermanfaat untuk mengamankan akses\u0026nbsp; HTTP sehingga terjaga pengiriman data antara server dengan client dengan cara ekripsi.\u003C\/div\u003E\n\u003Cdiv style=\"text-align: justify;\"\u003E\nBanyak Perusahaan yang menawarkan Pengamanan dengan SSL ini dengan harga dari yang murah sampai yang mahal, untuk saat ini kita coba mengunakan SSL local di webserver kita dengan menggunakan Openssl yang merupakan SSL geratis.\u003C\/div\u003E\n\u003Cbr \/\u003E\n\u003Cbr \/\u003E\n\u003Cb\u003E1. Install Openssl\u003C\/b\u003E\u003Cbr \/\u003E\n\u003Cpre style=\"background: rgb(247, 247, 247); border: none !important; box-sizing: inherit; color: #777777; font-family: \u0026quot;Courier New\u0026quot;; font-size: 15.2px; font-stretch: inherit; font-variant-east-asian: inherit; font-variant-numeric: inherit; line-height: 21.28px; overflow: auto; padding: 20px !important; vertical-align: baseline;\"\u003E$ yum -y install openssl mod_ssl\u003C\/pre\u003E\n\u003Cdiv\u003E\n\u003Cbr \/\u003E\u003C\/div\u003E\n\u003Cdiv\u003E\n\u003Cb\u003E2. Generate Sertifikat SSL, rubah domain mu dengan domain yang akan di gunakan\u003C\/b\u003E\u003C\/div\u003E\n\u003Cdiv\u003E\n\u003Cpre style=\"background: rgb(247, 247, 247); border: none !important; box-sizing: inherit; color: #777777; font-family: \u0026quot;Courier New\u0026quot;; font-size: 15.2px; font-stretch: inherit; font-variant-east-asian: inherit; font-variant-numeric: inherit; line-height: 21.28px; overflow: auto; padding: 20px !important; vertical-align: baseline;\"\u003E# Generate private key\n$ openssl genrsa -out www.domainmu.key 2048\n# Generate CSR (Certificate Signing Request) untuk memberikan SSL authority\n$ openssl req -new -key www.domainmu.key -out www.domainmu.csr \n\nCatatan: Anda akan mengisi keterangan tentang SSL authority\n\n# Generate Self Signed Key\n$ openssl x509 -req -days 365 -in www.domainmu.csr -signkey www.domainmu.key -out www.domainmu.crt\u003C\/pre\u003E\n\u003C\/div\u003E\n\u003Cbr \/\u003E\n\u003Cb\u003E3 Copy file hasil generate\u003C\/b\u003E\u003Cbr \/\u003E\n\u003Cpre style=\"background: rgb(247, 247, 247); border: none !important; box-sizing: inherit; color: #777777; font-family: \u0026quot;Courier New\u0026quot;; font-size: 12.6px; font-stretch: inherit; font-variant-east-asian: inherit; font-variant-numeric: inherit; line-height: 17.64px; overflow: auto; padding: 20px !important; vertical-align: baseline;\"\u003E$ cp www.domainmu.crt \/etc\/pki\/tls\/certs\/www.domainmu.crt\n$ cp www.domainmu.key \/etc\/pki\/tls\/private\/www.domainmu.key\n$ cp www.domainmu.csr \/etc\/pki\/tls\/private\/www.domainmu.csr\u003C\/pre\u003E\n\u003Cbr \/\u003E\n\u003Cbr \/\u003E\n\u003Cbr \/\u003E\n\u003Cb\u003E4. Pasang SSL di server\u003C\/b\u003E\u003Cbr \/\u003E\n\u003Cbr \/\u003E\nMasuk ke direktori \/etc\/httpd\/conf.d\/ssl.conf\u003Cbr \/\u003E\n\u003Cbr \/\u003E\nbuka dan edit file ssl.conf itu dengan menambahkan baris perintah:\u003Cbr \/\u003E\n\u003Cbr \/\u003E\n\u003Cpre style=\"background: rgb(247, 247, 247); border: none !important; box-sizing: inherit; color: #777777; font-family: \u0026quot;Courier New\u0026quot;; font-size: 15.2px; font-stretch: inherit; font-variant-east-asian: inherit; font-variant-numeric: inherit; line-height: 21.28px; overflow: auto; padding: 20px !important; vertical-align: baseline;\"\u003ESSLCertificateFile \/etc\/pki\/tls\/certs\/www.domainmu.crt\nSSLCertificateKeyFile \/etc\/pki\/tls\/private\/www.domainmu.key\u003C\/pre\u003E\n\u003Cbr \/\u003E\nRestart\u003Cbr \/\u003E\n\u003Cpre style=\"background: rgb(247, 247, 247); border: none !important; box-sizing: inherit; color: #777777; font-family: \u0026quot;Courier New\u0026quot;; font-size: 15.2px; font-stretch: inherit; font-variant-east-asian: inherit; font-variant-numeric: inherit; line-height: 21.28px; overflow: auto; padding: 20px !important; vertical-align: baseline;\"\u003E$ service httpd restart\u003C\/pre\u003E\n\u003Cbr \/\u003E\n\u003Cbr \/\u003E\n\u003Cb\u003E5. Membuat Virtual Host HTTPS\u0026nbsp;\u003C\/b\u003E\u003Cbr \/\u003E\n\u003Cbr \/\u003E\n\u003Cpre style=\"background: rgb(247, 247, 247); border: none !important; box-sizing: inherit; color: #777777; font-family: \u0026quot;Courier New\u0026quot;; font-size: 15.2px; font-stretch: inherit; font-variant-east-asian: inherit; font-variant-numeric: inherit; line-height: 21.28px; overflow: auto; padding: 20px !important; vertical-align: baseline;\"\u003ENameVirtualHost ip_address:443\nSSLEngine on\nSSLCertificateFile \/etc\/pki\/tls\/certs\/www.domainmu.crt\nSSLCertificateKeyFile \/etc\/pki\/tls\/private\/www.domainmu.key\u003C\/pre\u003E\n\u003Cbr \/\u003E\nSetting di Virtualhost , perhatikan lokasi web file kmu berada, jika tidak menggunakan virtualhost maka cukup https nya saja yang di virtualhost\u003Cbr \/\u003E\n\u003Cbr \/\u003E\n\u003Cpre style=\"background: rgb(247, 247, 247); border: none !important; box-sizing: inherit; color: #777777; font-family: \u0026quot;Courier New\u0026quot;; font-size: 15.2px; font-stretch: inherit; font-variant-east-asian: inherit; font-variant-numeric: inherit; line-height: 21.28px; overflow: auto; padding: 20px !important; vertical-align: baseline;\"\u003ENameVirtualHost *:80\u003C\/pre\u003E\n\u003Cpre style=\"background: rgb(247, 247, 247); border: none !important; box-sizing: inherit; font-stretch: inherit; font-variant-east-asian: inherit; font-variant-numeric: inherit; line-height: 21.28px; overflow: auto; padding: 20px !important; vertical-align: baseline;\"\u003E\u003Cspan style=\"color: #777777; font-family: \u0026quot;courier new\u0026quot;;\"\u003E\u003Cspan style=\"font-size: 15.2px;\"\u003E\u0026lt;VirtualHost *:80\u0026gt;\nServerName www.domainmu\nRedirect \/ https:\/\/domainmu\n\u0026lt;\/VirtualHost\u0026gt;\n\n\nNameVirtualHost *:443\n\u0026lt;VirtualHost *:443\u0026gt;\nSSLEngine on\nSSLCertificateFile \/etc\/pki\/tls\/certs\/www.domainmu.crt\nSSLCertificateKeyFile \/etc\/pki\/tls\/private\/www.domainmu.key\n       \u0026lt;Directory \/var\/www\/html\/nextcloud\u0026gt;\n        AllowOverride All\n        \u0026lt;\/Directory\u0026gt;\n        DocumentRoot  \/var\/www\/html\/nextcloud\u0026gt;\n        ServerName Domainmu\n\u0026lt;\/VirtualHost\u0026gt;\u003C\/span\u003E\u003C\/span\u003E\u003C\/pre\u003E\n\u003Cbr \/\u003E\n6. Beri akses untuk HTTP dan HTTPS service di Firewalld kemudian reload firewall\u003Cbr \/\u003E\n\u003Cbr \/\u003E\n\u003Cbr \/\u003E\n\u003Cpre style=\"box-sizing: inherit; font-family: Monaco, Consolas, \u0026quot;Andale Mono\u0026quot;, \u0026quot;DejaVu Sans Mono\u0026quot;, monospace; font-size: 14px; overflow: auto;\"\u003E# firewall-cmd --permanent --zone=public --add-service=http\u003C\/pre\u003E\n\u003Cpre style=\"box-sizing: inherit; font-family: Monaco, Consolas, \u0026quot;Andale Mono\u0026quot;, \u0026quot;DejaVu Sans Mono\u0026quot;, monospace; font-size: 14px; overflow: auto;\"\u003E\u003Cpre style=\"box-sizing: inherit; font-family: Monaco, Consolas, \u0026quot;Andale Mono\u0026quot;, \u0026quot;DejaVu Sans Mono\u0026quot;, monospace; overflow: auto;\"\u003E# firewall-cmd --permanent --zone=public --add-service=htts\u003C\/pre\u003E\n\u003Cpre style=\"box-sizing: inherit; font-family: Monaco, Consolas, \u0026quot;Andale Mono\u0026quot;, \u0026quot;DejaVu Sans Mono\u0026quot;, monospace; overflow: auto;\"\u003E\u003C\/pre\u003E\n\u003Cpre style=\"box-sizing: inherit; font-family: Monaco, Consolas, \u0026quot;Andale Mono\u0026quot;, \u0026quot;DejaVu Sans Mono\u0026quot;, monospace; overflow: auto;\"\u003E# firewall-cmd --reload\u003C\/pre\u003E\n\u003Cpre style=\"box-sizing: inherit; font-family: Monaco, Consolas, \u0026quot;Andale Mono\u0026quot;, \u0026quot;DejaVu Sans Mono\u0026quot;, monospace; overflow: auto;\"\u003E\u003C\/pre\u003E\n\u003Cpre style=\"box-sizing: inherit; font-family: Monaco, Consolas, \u0026quot;Andale Mono\u0026quot;, \u0026quot;DejaVu Sans Mono\u0026quot;, monospace; overflow: auto;\"\u003E\u003C\/pre\u003E\n\u003Cpre style=\"box-sizing: inherit; font-family: Monaco, Consolas, \u0026quot;Andale Mono\u0026quot;, \u0026quot;DejaVu Sans Mono\u0026quot;, monospace; overflow: auto;\"\u003E\u003C\/pre\u003E\n\u003C\/pre\u003E\nCobalah akses domain mu melalui browser, Sekian selamat mencoba..\u003Cbr \/\u003E\n\u003Cbr \/\u003E\n\u003Cbr \/\u003E\n\u003Cbr \/\u003E\n\u003Cbr \/\u003E\n\u003Cbr \/\u003E"},"link":[{"rel":"replies","type":"application/atom+xml","href":"https:\/\/www.mozunote.com\/feeds\/8859801423020703593\/comments\/default","title":"Post Comments"},{"rel":"replies","type":"text/html","href":"https:\/\/www.mozunote.com\/2018\/09\/cara-pasang-ssl-https-di-linux-centos-7.html#comment-form","title":"0 Comments"},{"rel":"edit","type":"application/atom+xml","href":"https:\/\/www.blogger.com\/feeds\/875899154744260851\/posts\/default\/8859801423020703593"},{"rel":"self","type":"application/atom+xml","href":"https:\/\/www.blogger.com\/feeds\/875899154744260851\/posts\/default\/8859801423020703593"},{"rel":"alternate","type":"text/html","href":"https:\/\/www.mozunote.com\/2018\/09\/cara-pasang-ssl-https-di-linux-centos-7.html","title":"Cara Pasang SSL HTTPS di Linux Centos 7"}],"author":[{"name":{"$t":"Mozu"},"uri":{"$t":"http:\/\/www.blogger.com\/profile\/15656279653354976812"},"email":{"$t":"noreply@blogger.com"},"gd$image":{"rel":"http://schemas.google.com/g/2005#thumbnail","width":"16","height":"16","src":"https:\/\/img1.blogblog.com\/img\/b16-rounded.gif"}}],"media$thumbnail":{"xmlns$media":"http://search.yahoo.com/mrss/","url":"https:\/\/1.bp.blogspot.com\/-LU3s1FH58TU\/W59p7WCowcI\/AAAAAAAAAyY\/pTbZFARSi2IRXXMbkdHzI_AHBmzUwPqHQCLcBGAs\/s72-c\/Mozunote.com-OpenSSL.jpeg","height":"72","width":"72"},"thr$total":{"$t":"0"}}});