To install the proper certificates for https, you just need to copy the appropriate files into the right directory for Apache.

On windows, Apache is configured to use SRVROOT/conf/extra/httpd-ahssl.conf (SRVROOT is the Orca installation directory on Windows). The directives in this file identify where Apache should obtain SSL certificate files: 

  •  SSLCertificateFile “${SRVROOT}/conf/ssl/server.crt”
  •  SSLCertificateKeyFile “${SRVROOT}/conf/ssl/server.key”
  •  SSLCACertificateFile “${SRVROOT}/conf/ca-bundle.crt”

On Linux, Apache is configured to use the default /etc/httpd/conf.d/ssl.conf SSL configuration file and the default certificate locations defined in that file: 

  • SSLCertificateFile /etc/pki/tls/certs/server.crt
  • SSLCertificateKeyFile /etc/pki/tls/certs/server.key
  • SSLCACertificateFile /etc/pki/tls/certs/ca-bundle.crt

The server private key file cannot have a password or Apache will not start.

You can use the defaults as is and just place the key and crt files in the specified directories, or you can change the paths to point to another location if you have a requirement to keep certificates in a specific location.

After putting the certificates in place, you’ll need to stop and then restart the Orca service. On Windows, use the Windows Services Manager to stop and then start the Orca service. On Linux use the command “systemctl stop orca” to stop the Orca service and “systemctl start orca” to start the Orca service.

The embedded Apache on Windows and the CentOS/RHEL Apache are standard Apache 2.4 httpd servers. Refer to the Apache documentation for more specific information on certificate requirements for HTTPS.