Pb with SSL Installation on ISP3 with CENTos

Discussion in 'HOWTO-Related Questions' started by Plugandcom, Nov 19, 2012.

  1. Plugandcom

    Plugandcom New Member

    Hi,

    There's a problem with the installation of a SSL certificate.

    When the forms (SSL Request & SSL certificate) are informed, The certificate is saved. (All right).

    But after the restart of the server, The HTTPD failed. So, no access to the manager of ISP... The only possibility is the SSH connect to erase the new codes of the files : /ETC/HTTPD/conf/Domain name.vhost.

    But the SSL doesn't Work... And we don't make this configuration... The certificate on the navigators (Chrome, Firefox, etc...) is not available.

    Can you help us... ?
     
  2. cbj4074

    cbj4074 Member HowtoForge Supporter

    Which Web-server are you using? Apache?

    What is the error output in Web-server's log file?
     
  3. Plugandcom

    Plugandcom New Member

    Hi.

    We are on Apache 2.

    And for the LOGS... Maybe, the pb is on this code :

    [Mon Nov 19 14:50:34 2012] [warn] RSA server certificate is a CA certificate (BasicConstraints: CA == TRUE !?)
    [Mon Nov 19 14:50:34 2012] [warn] RSA server certificate CommonName (CN) `server1.example.com' does NOT match server name!?

    But what the name of the VM ??? or where can we setup it ??? If it's the good error ?
     
  4. cbj4074

    cbj4074 Member HowtoForge Supporter

    The first message is usually the result of using a self-signed certificate, which is, by definition, a CA certificate. If you are not using a self-signed certificate, then something is misconfigured.

    The second message means that the effective "ServerName" directive value (usually defined at the vhost level) does not match the SSL certificate's "CommonName" field.

    Neither of these messages should cause Apache to fail to start. So, the problem seems to be elsewhere.

    Please provide more background on what exactly you are trying to achieve, and the exact steps that you are taking in the process.

    Are you trying to install a valid, CA-signed certificate for a website that you created with ISPConfig? Or are you trying to generate your own self-signed certificate on the command-line and then paste it into ISPConfig? Or are you trying to secure ISPConfig itself with an SSL certificate?

    We need more details to be able to help. And please avoid using shorthand in your posts, such as "pb" for what I assume to be "problem".
     

Share This Page