Generate CSR on your server. Paste the contents of .csr into Namecheap’s interface.
(The .key file is referenced by Apache later along with the certificate)
[code]
openssl req -new -newkey rsa:2048 -nodes -keyout server.key -out server.csr[/code]
(use www.mikehealy.com.au as my FQDN)
Create crazy long CNAME in DNS to verify. Seems to replace email validation.
Overwrite certificate files in /root on server with new ones from Comodo. Restart Apache, config can stay the same.