Configuring SSL Certificates on Rackspace Cloud Load Balancer

Posted: June 17, 2014

There is plenty of information on configuring SSL termination on Rackspace Load Balancers but it might be easy to stumble on setting up the intermediate certificate.

If you have the intermediate certificate configured wrong, you may see a big ugly "untrusted certificate" error in a browser like Firefox.

There are 3 fields to add a certificate to the load balancer: Certificate, Private Key, and Intermediate Certificate.

The Certificate I configured today came from COMODO. It included 4 files:

- www_mydomain_com.crt
- COMODORSADomainValidationSecureServerCA.crt
- COMODORSAAddTrustCA.crt
- AddTrustExternalCARoot.crt

Here is how those files should be configured:

1) Add the content of www_mydomain_com.crt to the Certificate field.

2) Add the content of the private key file you used to generate your certificate request to the Private Key field.

3) Combine the contents of the remaining 3 .crt files, in the order listed above, and add it to the Intermediate Cert field.

To be clear, I am referring to the combined contents of these 3 files, in this order:

- COMODORSADomainValidationSecureServerCA.crt
- COMODORSAAddTrustCA.crt
- AddTrustExternalCARoot.crt