How to Do apache with SSL support

View previous topic View next topic Go down

How to Do apache with SSL support

Post  Admin on Sun Sep 27, 2009 5:46 am

###Apache with SSL Support###

Features:
1. Secure/Encrypted communications with http protocol

Packages:
1. httpd
2. openssl
3. mod_ssl
4. crypto-utils (genkey) - used to generate certificates/private keys/CSRs
a. also used to create a self-signed certificate

Tasks:
1. Install the requirements and check
a. mod_ssl - module for Apache, which provides SSL support

# yum list httpd
# yum list mod_ssl
# yum -y install mod_ssl
# rpm -ql mod_ssl
# yum list crypto-utils
# yum install crypto-utils
# rpm -qa | grep -i openssl
# rpm -ql httpd

/etc/httpd/conf.d/ssl.conf - includes key SSL directives

b. crypto-utils - provies /usr/bin/genkey
# which genkey
# less /etc/pki/tls/certs/localhost.crt
# less /etc/pki/tls/private/localhost.key

2. Generate SSL usage keys using: genkey
a. # genkey server.glowfute.com --> creates text-gui interface
# ll /etc/pki/tls/certs/
# ll /etc/pki/tls/private/ --> To check the permission

3. Update /etc/httpd/conf.d/ssl.conf to reference the new keys (public/private)
# vim /etc/httpd/conf.d/ssl.conf
--> change the certificate path to
SSLCertificateFile /etc/pki/tls/certs/server.glowfute.com.cert
SSLCertificateKeyFile /etc/pki/tls/private/server.glowfute.com.key


4. Restart the HTTPD server
a. # service httpd restart
b. # httpd -S
c. # netstat -ntlp|grep 443

5. Test HTTPS connectivity
a. https://192.168.75.199

Note: For mutliple SSL sites, copy the: /etc/httpd/conf.d/ssl.conf file to distinct files, that match your distinct IP-based VHosts
avatar
Admin
Admin

Posts : 32
Join date : 2009-09-13
Age : 31
Location : Chennai

View user profile http://linux.nsguru.com

Back to top Go down

View previous topic View next topic Back to top

- Similar topics

 
Permissions in this forum:
You cannot reply to topics in this forum