BladeSystem Forums have moved here
To make BladeSystem information easier to find, we have moved the BladeSystem forums here, to Servers and Operating Systems.
Showing results for 
Search instead for 
Do you mean 

apache ssl

SOLVED
Go to Solution
Frequent Advisor

apache ssl

I have 01.03.12.03.01 HP Apache-based Web Server with Strong (128bit) Encryption
running with a lot of different web sites using URL names for virtual hosts (all under the same IP).

I have two SSL certificates, with two defined virtual hosts. When starting apache I am prompted for the pass phrase for each certificate.

BUT when accessing either of the SSL sites, only the first defined certificate is used. If one re-orders the virtual hosts in the httpd.conf file and restarts apache, the other certificate is used for both hosts.

Any clue to what is going on?
It's only a flesh wound...
3 REPLIES
Honored Contributor

Re: apache ssl

Hi,

Due to the way that SSL connections are negotiated, name-based virtual hosts (using the same IP address for different names) cannot use port 443 for https connections. You will need IP-based virtual host (using different IP addresses for different names).

In short, name-based virtual hosting is not supposed with apache+ssl.

Hope this helps. Regards.

Steven Sim Kok Leong
Email: steven@beepz.com. Homepage: https://www.beepz.com
Honored Contributor

Re: apache ssl

Hi,

Following link explains in detail:

http://httpd.apache.org/docs/vhosts/name-based.html

Hope this helps. Regards.

Steven Sim Kok Leong
Email: steven@beepz.com. Homepage: https://www.beepz.com
Highlighted
Trusted Contributor

Re: apache ssl

I also have Apache running with 5 sites. But I am using only one card.

Under SAM(networking and comunications, network interface cards) you can add a IP Logical Interface. This is a fancy name for a 2nd ip address to one card.

Highlight the card you want to add the 2nd ip address too, then the "IP logical interface" option will show up under "actions".
I would not use over 15 additional ip addresses this way though. I asked how many ip addresses could be on one card in a forum earlier.

Steve