How to install an Origin CA certificate in NGINX

To install an NGINX Server SSL certificate:

  1. Obtain private key and origin certificate pair.
    After completing the steps to generate the private key and origin certificate, download both the private key and origin certificate in .pem format.

  2. Copy the key and certificate pair to your origin server.
    Copy the key and certificate files to the directory on your server where you will keep your key and certificate files.

  3. Edit your Nginx virtual hosts file.
    Open your Nginx virtual host file for the website you are securing. If you need your site to be accessible through both secure (https) and non-secure (http) connections, the "ssl" parameter must be enabled on listening sockets in the server block. An example is listed below with the lines to be added in bold.

  4. Restart Nginx.
    Run the one of following commands to restart nginx, depending on your distribution.

Still not finding what you need?

The Cloudflare team is here to help. 95% of questions can be answered using the search tool, but if you can’t find what you need, submit a support request.

Powered by Zendesk