首先我们需要把下载的证书上传至linux服务器上边;
然后修改nginx.conf配置文件:
server {
listen 80;
server_name www.lscmlr.top;
rewrite ^(.*)$ https://$host$1 permanent;#把http的域名请求转成https
}
server {
listen 443 ssl;
server_name www.lscmlr.top;
ssl_certificate /usr/local/openresty/user_conf/lscmlr.top/ssl/fullchain.pem; #这里是ssl key文件存放的绝对路径,根据自己的文件名称和路径来写
ssl_certificate_key /usr/local/openresty/user_conf/lscmlr.top/ssl/privkey.key; #这里是ssl key文件存放的绝对路径,根据自己的文件名称和路径来写
ssl_session_timeout 5m;
ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4;
ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
ssl_prefer_server_ciphers on;
location / {
index index.html index.htm;
}
}
配置结束后重启nginx然后查看是否成功: