Page History

...

Here are the steps you may follow to setup "https" in your Apache webserver.

1. Create a directory

   Code Block
   theme Confluence

   
   Now protect the directory,

   Code Block
   theme Confluence

2. Create two subdirectories

   Code Block
   theme Confluence

3. Create a database to keep track of each certificate

   Code Block
   theme Confluence

4. Create a custom config file for OpenSSL to use similar to openssl.cnf in your /etc/pki/tls folder.

   Code Block
   theme Confluence

5. Create a root certificate All other certificates you create will be based of this. Since this is not a commercial certificate software may complain when they use your certificates. You may give people the "public" certifcate and your certifcate will work like commercial ones when they import it. To create, while in the 'sslcert' directory type:

   Code Block
   theme Confluence

   
   You will be prompted for information and a password. Do not lose this password, make sure it is a secure one and back up the two files that are created.
   
   The two files that are created are cacert.pem, which is the one you can give to others for import in their browsers and cakey.pem, which will be in the private directory.
   
   

6. Create a key and signing request

   Code Block
   theme Confluence

   
   You will be prompted for information. The critical part is the "Common Name". This must be the server's hostname, such as mail.your.domain or the IP address. If you want to cover all subdomains you can enter *.your.domain. Use the "Organizational Unit" to remind you what the certificate is for, such as "Web Server". This will generate two files

   ,

   :
   
   name-req.pem - the request
   name-key.pem - the private key in the private directory
   
   

7. Sign the request This will generate the certificate,

   Code Block
   theme Confluence

   
   You will be prompted for the password used when creating the root certificate. Two files are created,
   
   name-cert.pem - which is the certificate
   <number.pem> - a copy of it in the certs directory
   
   

8. Copy to the correct location For apache 2.x on Red Hat using the default location, the directory is:
   For the name-key.pem:

   Code Block
   theme Confluence

   
   For the certificate:

   Code Block
   theme Confluence

9. Create a Virtual Host

   Code Block
   theme Confluence

10. Configure proxy in Apache described in FAQ 13 and restart Apache.
    Edit the Hosts file [/etc/hosts]

TOP

15. What are the major differences between other major MySQL Monitoring Tool and SQL DM for MySQL?

...