Showing results for 
Search instead for 
Do you mean 

apache ssl

SOLVED
Go to Solution
Highlighted
Frequent Advisor

apache ssl

I have 01.03.12.03.01 HP Apache-based Web Server with Strong (128bit) Encryption
running with a lot of different web sites using URL names for virtual hosts (all under the same IP).

I have two SSL certificates, with two defined virtual hosts. When starting apache I am prompted for the pass phrase for each certificate.

BUT when accessing either of the SSL sites, only the first defined certificate is used. If one re-orders the virtual hosts in the httpd.conf file and restarts apache, the other certificate is used for both hosts.

Any clue to what is going on?
It's only a flesh wound...
1 ACCEPTED SOLUTION
Honored Contributor Honored Contributor

Re: apache ssl

Hi,

Due to the way that SSL connections are negotiated, name-based virtual hosts (using the same IP address for different names) cannot use port 443 for https connections. You will need IP-based virtual host (using different IP addresses for different names).

In short, name-based virtual hosting is not supposed with apache+ssl.

Hope this helps. Regards.

Steven Sim Kok Leong
Email: steven@beepz.com. Homepage: https://www.beepz.com
3 REPLIES
Honored Contributor Honored Contributor

Re: apache ssl

Hi,

Due to the way that SSL connections are negotiated, name-based virtual hosts (using the same IP address for different names) cannot use port 443 for https connections. You will need IP-based virtual host (using different IP addresses for different names).

In short, name-based virtual hosting is not supposed with apache+ssl.

Hope this helps. Regards.

Steven Sim Kok Leong
Email: steven@beepz.com. Homepage: https://www.beepz.com
Honored Contributor Honored Contributor

Re: apache ssl

Hi,

Following link explains in detail:

http://httpd.apache.org/docs/vhosts/name-based.html

Hope this helps. Regards.

Steven Sim Kok Leong
Email: steven@beepz.com. Homepage: https://www.beepz.com
Trusted Contributor Trusted Contributor

Re: apache ssl

I also have Apache running with 5 sites. But I am using only one card.

Under SAM(networking and comunications, network interface cards) you can add a IP Logical Interface. This is a fancy name for a 2nd ip address to one card.

Highlight the card you want to add the 2nd ip address too, then the "IP logical interface" option will show up under "actions".
I would not use over 15 additional ip addresses this way though. I asked how many ip addresses could be on one card in a forum earlier.

Steve