• add define(‘FORCE_SSL_ADMIN’, true); in wp-config.php
        

  • edit /etc/apache2/listen.conf and add NameVirtualHost *:443
        

  • add a virtualHost section to your httpd.conf

DocumentRoot “var/local/wwwroot/bernhard/”
ServerName bernhard.hensler.net
ErrorLog /var/log/apache2/error_log
TransferLog /var/log/apache2/access_log
SSLEngine on
SSLCipherSuite ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+
LOW:+SSLv2:+EXP:+eNULL
SSLCertificateFile /etc/apache2/ssl.crt/server.crt
SSLCertificateKeyFile /etc/apache2/ssl.key/server.key

Fortunately there was no need to go through the painful process of creating my own CA etc., but instead I was able to use the “built-in” certifcate of my provider. To read a SSL certificate: openssl x509 -noout -text -in certificate.crt

Signature Algorithm: md5WithRSAEncryption
Issuer: C=DE, O=hensler.net, OU=IT, CN=bernhard.hensler.net/emailAddress=bhensler at gmail dot com
Validity
Not Before: Aug 24 17:31:07 2009 GMT
Not After : Aug 22 17:31:07 2019 GMT
Subject: C=DE, O=hensler.net, CN=bernhard.hensler.net/emailAddress=bhensler at gmail dot com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public Key: (4096 bit)
Modulus (4096 bit):