httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Melanie Pfefer <melanie_pfe...@yahoo.co.uk>
Subject [users@httpd] renewing a certificate
Date Wed, 06 May 2009 06:52:55 GMT

Hi,

I have tomcat server running as a backend server and apache running as front-end, both on
the same machine

In httpd.conf, I have:

SSLProxyEngine On
RewriteEngine On
SSLProxyCACertificatePath /usr/local/apache/conf/ssl
RewriteRule ^/(abc.*) https://host:port/$1 [P,L]


I am getting an error that the certificate is out of date.

What I did before was:

keytool -export -alias tomcat -rfc > tomcat.pem
c_rehash  /usr/local/apache/conf/ssl

now /usr/local/apache/conf/ssl has

server.crt
server.key
tomcat.pem
cc5d41ae.0 -> tomcat.pem


I need to know how to renew the certificate.

Is it sufficient to redo:

keytool -export -alias tomcat -rfc > tomcat.pem
c_rehash  /usr/local/apache/conf/ssl

how to rollback in case of failures?

Thank you



      

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org


Mime
View raw message