Almost all WebSTAR installations will require a PEM concatenated certificate for the installation, but there are a few older versions which require a Netscape sequenced format, sometimes called NSEQ. If you are unable to install your certificate with the PEM concatenated file, download the Netscape sequenced format certificate from the Trustwave Control Center.

Verify that your server has SSL capabilities enabled. You will have these capabilities if your WebSTAR Administration application shows an "SSL Security" item in the list of settings.

Click the IP address that will require SSL security. On the Security popup menu, check SSL2 and SSL3. Trustwave recommends, for security reasons, that only SSL3 be enabled. SSL2 ciphers have been shown to have several security holes and SSL3 has become the new industry standard. If you do choose to disable SSL2, you will create a more secure system for your customers, but any customers without SSL3 capabilities (which is a very minute percentage of users) will not be able to connect securely to your site.

Click the "Certificate Choose" button and select the PEM concatenated file that you downloaded from the Trustwave Control Center. Click on the "Private Key File Choose" button and select the private key that was used to generate the CSR. You will be asked to provide your private key password. Click "Save".

Check the Server Status window for a message similar to this one: "SSL context for [ip address]:443 created". Check your cipher settings and then click Save to set the information.