Installing an SSL Certificate on Google App Engine (GAE)

3 votes, average: 2.33 out of 53 votes, average: 2.33 out of 53 votes, average: 2.33 out of 53 votes, average: 2.33 out of 53 votes, average: 2.33 out of 5 (3 votes, average: 2.33 out of 5, rated)

SSL installation on Google App Engine has never been easier

Google App Engine (GAE), which as the name implies was developed by Google, is a cloud platform for developing and hosting web applications. Follow our step-by-step guide for quick and easy SSL installation on Google App Engine.

Installing an SSL Certificate on Google App Engine

Let’s get going!!!

Generate a code signing request (CSR)

This is the first thing you must do before you begin the installation process. Upon generating one, you will get the CSR along with the private key. You can generate a CSR using our online tool or over a web server.

Note: Make sure to store the private key safely, should it become compromised you will have re-issue the entire certificate with a new key.

Download and extract the certificate files

After validation, the certificate authority (CA) sends you the certificate files via email. A thing to note here is that these files are contained in a zip file and you must extract it to the server directory.

Note: First, configure SSL for custom domains using your Google Apps account.

Convert the certificate to .pem format

  • Copy and paste the contents of the Primary Certificate and Intermediate Certificate in that order.
  • You must add Begin Certificate and End Certificate command for each certificate.
  • Add five dashes to either side of Begin Certificate and End Certificate commands. It should look like this:

(Your Primary SSL certificate: domain_name.crt)
(Your Intermediate certificate: certificate_provider.crt)

Enable SSL certificate for custom domain

  • Sign in to your Google Apps account
  • The next step is to add your app as a service in Google Apps. Go to More Controls > App Engine Apps > Add Service. Now, add your application ID and click Add it now.
  • Now, you must connect the app with Google Apps and map it to a subdomain. You should see a URL
  • Click on Add new URL in case you want your users to access the primary domain using Google Apps account.
  • Now you should enter the subdomains
  • Go to Security > Advance Settings > Show More > SSL for Customer Domains and click Enable SSL for App Engine Applications. In order to activate the SSL certificate, enter your App ID.
  • Now you will be redirected to App Engine Admin Console. Click Enable.

On successful completion of the aforementioned steps, the SSL certificate will be activated.

Upload the SSL Certificate

  • Log in to Google Admin Console if you’re not logged in.
  • Go to Security > Advanced Settings > Show More (optional) > SSL for Custom Domain.
  • Select Configure SSL Certificates.
  • Click on Upload a new certificate on the SSL Configuration page.
  • Now upload the .pem formatted certificate file under the PEM-encoded X.509 certificate
  • Upload the private key (in .key format) under unencrypted PEM encoded RSA private key.
  • Click on Upload

Configure the SSL Certificate

  • On completing the uploading process, the next step is to select the right serving mode.
  • Based on your server type, select one of the three options.
  • Now add the matching URLs. You can either do it by selecting from the drop-down menu or you can do it by adding multiple URLs by choosing Assign all matching URLs option.
  • While configuring, you must change CNAME details of the URL. You must contact your service provider for that.
  • Click here to learn how to create CNAME record.
  • Finally, click on the Save button to save the changes.

Your certificate is now uploaded successfully!!!

About RapidSSLonline

Jim Armstrong works with to provide customized support and solutions to businesses that seek SSL solutions. RapidSSLonline provides cheap SSL certificates including wide range of SSL security products like WildCard SSL, EV SSL, SAN SSL, and Code Signing Certificate to maximize security for your data and transactions on web. His considerable knowledge of SSL includes brands like VeriSign, Thawte and Trustwave. Interested parties should contact by calling 727-388-4240 or by visiting

Leave a Reply

Your email address will not be published. Required fields are marked *