I have exactly the same problem.
I set up openedx bitnami on Azure
On the Azure server, I ran the commands to generate a server.key
sudo openssl genrsa -out /opt/bitnami/apache2/conf/server.key 2048
then to make the .csr
sudo openssl req -new -key /opt/bitnami/apache2/conf/server.key -out /opt/bitnami/apache2/conf/cert.csr
I sent this to my IT folks who made me a certificate file. I got several, and it wasn't clear which to choose, so I chose one that was described as "X509 certificate only, base64 encoded" and it was called bio111_umb_edu_cert.cer (note that it was .cer not .crt but much poking about on the web suggested that was not an issue)
when I check this file with openssl, I get no errors and lots of useful-looking output
I then edited /opt/bitnami/apache2/conf/bitnami/bitnami.conf to change the one line
I then followed the instructions for using bnconfig to change the hostname
sudo /opt/bitnami/apps/edx/bnconfig --machine_hostname bio111.umb.edu
sudo mv /opt/bitnami/apps/edx/bnconfig /opt/bitnami/apps/edx/bnconfig.back
I restarted Apache and going to https://bio111.umb.edu gave a security warning
http://bio111.umb.edu shows the edX homepage (NOT the bitnami one in the post above),
looking in /opt/bitnami/apache2/logs/error_log showed an error "127.0.0.1:443:0 server certificate does not include an id which matches the server name"
So, I edited the line in /opt/bitnami/apache2/conf/httpd.conf so that
Now, going to https://bio111.umb.edu gives a green padlock and, when that is clicked on, the certificate info matches the output of openssl's examination of the .cer file - so, clearly, the certificate is being read.
UNFORTUNATELY, I no longer see the edX page at either http://bio111.umb.edu or https://bio111.umb.edu, I see the bitnami page in the post above.
I think I've followed the directions exactly - except for editing httpd.conf (but it wasn't working before I made this change anyway - although it was failing differently..) - but it isn't working.
I've even rebooted the VM with no effect.
Interestingly, /opt/bitnami/apache2/logs/error_log still gets the "127.0.0.1:443:0 server certificate does NOT include an ID which matches the server name" - even though the server is "working-ish".
Where have I gone wrong?
Thanks in advance for your help.