Re: Issue with SSL configuration.

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

To: users@xxxxxxxxxxxxxxxx
Subject: Re: Issue with SSL configuration.
From: "Vasanth Kumar ravi" <josvasanth@xxxxxxxxx>
Date: Wed, 29 Oct 2008 16:28:23 +0800
In-reply-to: <6ed6382b0810280735w5b5ae5e0k656d75ea6e323058@xxxxxxxxxxxxxx>
Reply-to: users@xxxxxxxxxxxxxxxx

Thanks folks..
After posting this in the forum , I did an extensive research on the internet and it was resolved.
Major problem was due to the Virtual host configuration..Now i am able to use the SSL at the apache level.

wildcard NameVirtualHosts and _default_ servers:
*:443                  is a NameVirtualHost
         default server gelxd002.sony.com.sg (/home/apache/conf/httpd.conf:362)
         port 443 namevhost gelxd002.sony.com.sg (/home/apache/conf/httpd.conf:362)
         port 443 namevhost gelxd002.sony.com.sg (/home/apache/conf/httpd.conf:376)
*:80                   is a NameVirtualHost
         default server gelxd002.sony.com.sg (/home/apache/conf/httpd.conf:332)
         port 80 namevhost gelxd002.sony.com.sg (/home/apache/conf/httpd.conf:332)
         port 80 namevhost gelxd002.sony.com.sg (/home/apache/conf/httpd.conf:343)

I need your help in some configuration ideas.
I m trying to setup something like the below.
Client <---SSL---> Apache <---HTTP---> WebLogic

I request http://<hostname>/OPSWeb/neo from the browser and it goes to the login page and I am able to perform all the functions.
When I request https://<hostname>/OPSWeb/neo , it doesnt give a login page, but it gives a pop-up in IE "Access is Denied. Type Error"
As stated earlier, I need to have HTTPS between the browser and the web server and HTTP between the Apache and Weblogic.
Also there is no SSL enabled at the Weblogic level.

Do we have to write some ProxyReverse Parameters/Rewrite rules.
Let me know if you need any further details.

Please advise.

On Tue, Oct 28, 2008 at 10:35 PM, Krist van Besien <krist.vanbesien@xxxxxxxxx> wrote:

On Tue, Oct 28, 2008 at 3:36 AM, Vasanth Kumar ravi
<josvasanth@xxxxxxxxx> wrote:

> SSLCertificateFile /usr/share/ssl/certs/server.crt/
> SSLCertificateKeyFile /usr/share/ssl/certs/server.key/

The argument to SSLCertifacateFile and SSLCertificateKeyFile is a
_file_, not a directory. Just enter the full path to your cert and
private key here.

> I had copied the certs to the openssl certs directory and created hashlinks
> for them.

Creating hashkeys is not necessary. Apache knows where to find its
cert if you give SSLCertificateFile the correct value.

Krist

--
krist.vanbesien@xxxxxxxxx
krist@xxxxxxxxxxxxx
Bremgarten b. Bern, Switzerland
--
A: It reverses the normal flow of conversation.
Q: What's wrong with top-posting?
A: Top-posting.
Q: What's the biggest scourge on plain text email discussions?

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx
" from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx
For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx

--
Regards&Thanks,
Vasanth Kumar Ravi

Follow-Ups:
- Re: Issue with SSL configuration.
  - From: Vasanth Kumar ravi

References:
- Issue with SSL configuration.
  - From: Vasanth Kumar ravi
- Re: Issue with SSL configuration.
  - From: Krist van Besien

Prev by Date: Request for information about httpd policies for businesses
Next by Date: Does the "time taken to serve the request (%D)" include the time taken to read the request?
Previous by thread: Re: Issue with SSL configuration.
Next by thread: Re: Issue with SSL configuration.
Index(es):
- Date
- Thread

[Index of Archives] [Open SSH Users] [Linux ACPI] [Linux Kernel] [Linux Laptop] [Kernel Newbies] [Security] [Netfilter] [Bugtraq] [Squid] [Yosemite News] [MIPS Linux] [ARM Linux] [Linux Security] [Linux RAID] [Samba] [Video 4 Linux] [Device Mapper]

Powered by Linux