May not fix your problem, but I'm curious if mod_ssl was imported? On Sat, Nov 18, 2023 at 12:43 PM <users-digest-help@xxxxxxxxxxxxxxxx> wrote: > > > users Digest 18 Nov 2023 20:42:58 -0000 Issue 6519 > > Topics (messages 122954 through 122954) > > SSLEngine error > 122954 by: John > > Administrivia: > > --------------------------------------------------------------------- > To post to the list, e-mail: users@xxxxxxxxxxxxxxxx > To unsubscribe, e-mail: users-digest-unsubscribe@xxxxxxxxxxxxxxxx > For additional commands, e-mail: users-digest-help@xxxxxxxxxxxxxxxx > > ---------------------------------------------------------------------- > > > > > ---------- Forwarded message ---------- > From: John <john.iliffe@xxxxxxxxx> > To: Apache Help <users@xxxxxxxxxxxxxxxx> > Cc: > Bcc: > Date: Sat, 18 Nov 2023 15:42:46 -0500 > Subject: SSLEngine error > I'm trying to bring up Apache on a new server running Rocky Linux 9.1 and also upgrade the version > of Apache from 2.4.25 to current. > > I have installed a .pem format certificate and when I try to start Apache I get this error: > ---- > Starting The Apache HTTP Server... > httpd[12399]: AH00526: Syntax error on line 11 of /etc/httpd/conf.d/coax.conf: > httpd[12399]: Invalid command 'SSLEngine', perhaps misspelled or defined by a module not included in > the server configuration > systemd[1]: httpd.service: Main process exited, code=exited, status=1/FAILURE > systemd[1]: httpd.service: Failed with result 'exit-code'. > systemd[1]: Failed to start The Apache HTTP Server. > ---- > To me SSLEngine looks properly coded and the same configuration worked on the previous server. Here > is what I have: > > <Virtualhost *:443> > ServerName www.example.ca > ServerAlias t.example.ca > DocumentRoot /usr/httpd/example > Options -MultiViews > H2Direct on > ProxyPassMatch "^/.*\.php(/.*)?$" fcgi://127.0.0.1:9002/usr/httpd/example > SSLEngine on > SSLCipherSuite HIGH: !ADH: !SSLv2: !SSLv3: !TLSv1: !aNULL: !eNULL: !RC4: !PSK: !MD5 > SSLCertificateFile /etc/httpd/conf/sslcert/www.example.pem > SSLCertificateKeyFile /etc/httpd/conf/sslcert/www.example.ca.key > SSLCACertificateFile /etc/httpd/conf/sslcert/intermediate.crt > SSLHonorCipherOrder on > Header always set Strict-Transport-Security "max-age-63072000;includeSubDomains" > </VirtualHost> > > This looks to me like I missed something in the upgrade but hours of searching the documentation > haven't given me any possibilities. Any ideas would be appreciated! > > John > ====== > > --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx