SSL configuration on Github Enterprise Server

Hello Team,
I need to configure SSL on GitHub Enterprise server anybody know how that is done?

Thanks
Mike

Try the following
https://docs.github.com/en/enterprise-server/admin/configuration/configuring-network-settings/configuring-tls

1 Like

Thanks alot @byrneh. I am currently going through the doc for number (6) i know to get that certificate from the server team after i send them a CSR file however for (7) where do i get the .key file from?

I appreciate your response

Thanks
Mike

@byrneh i used openssl which created a .key and .csr file. i will be giving the .csr file to the team to create a cert. we also have a bundle cert with a couple of .cer files including a ROOTCA.cer in it…how do i go about adding this to my github enterprise server instance ( the cert received from the team, the .key file and also the bundle that includes ROOTCA.cer and other .cer files in it…any assistance will be of tremendous help

Thanks
Mike

@byrneh @GalaxyAllie i have installed the certs for my GitHub enterprise as follows .cer provided by the cert team, bundle cert and ROOTCA cert. also i uploaded the private key. How do i check that it worked? just an additional information the url didn’t have a “Not Secure” before i updated the certs and still doesn’t have that

Thanks
Mike

Hi Mike,

You can view orđisplay the server certificate detils. An example using openssl.below.

openssl s_client -showcerts -connect www.example.com:443

@byrneh thanks so much for your response i have a confirmation question. Currently i have a rootCA cert, a bundle(comprises of 3 certs), a cert provided to me after my CSR submission and my private a .key file which was generated same time i generated the the csr . so what i have done is open with note pad the primary cert i received after i sent a request using the generated csr, then i added the certs in the bundle and finally the ROOTCA cert in that order. Next step i went to the management console and uploaded the new cert (with all the certs included) and also uploaded the private key at there respective locations …Thats the process i used is that right?