Sysadmin > SolarIs > Apache2SSL
Changes | Index | Search
Tags(edit)

How to enable SSL on solaris 10

create a certificate or a certificate signing request 

openssl req -new -nodes -newkey rsa:2048 -keyout foo.com.key -out foo.com.csr

check the settings 

openssl req -text -noout -in  foo.com.csr

go to your favorite CA and let your certificate sign

for example from http://cacert.org

come back with a signed certificate

stop apache 

svcadm disable apache2

enable SSL 

svccfg -s apache2 setprop httpd/ssl = boolean: 'true'

configure apache for SSL

Solaris 10 ships with a functional /etc/apache2/ssl.conf file: edit the file and make sure the SSLCertificate* directive are pointing to your certificate and its key.

More or less you have to add 
Listen 443
NameVirtualHost 443

<VirtualHost *:443>
    SSLEngine on
    SSLCertificateFile /etc/apache2/foo.com.cert
    SSLCertificateKeyFile /etc/apache2/foo.com.key

...

start apache 

svcadm enable apache2

test your site 

openssl s_client -connect foo.com:443 -state -debug

or

https://www.ssllabs.com/ssltest/
Edit | Attach | More topic actions
Copyright © Creative Commons License