httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Jeff Cauhape <jpcauh...@nvdetr.org>
Subject [users@httpd] Probably small problem with SSL config
Date Tue, 06 Feb 2018 00:02:18 GMT
I'm setting up an Apache server 2.4.25 in our DMZ for the first time,
and having an issue with getting SSL configured correctly.

I am using links text based browser to connect from a second machine
to the first machine. The connection works with HTTP but not with HTTPS.

When I try to connect with HTTPS, I get the error:

"Unable to retrieve https://<ip<https://%3cip> address>/:

                        SSL error"

Unfortunately I'm not finding any useful log information to
help me figure out what I'm doing wrong.

Here's the relevant bits from the httpd.conf file:

<IfModule ssl_module>
SSLRandomSeed startup builtin
SSLRandomSeed connect builtin
SSLSessionCache dbm:/apps/apache_2.4.25/ssl/ssl_cache
</IfModule>

Listen 443
<VirtualHost *:443>
  ServerName   <the_FQDN>
  SSLEngine    on
  SSLCertificateFile    "/apps/apache_2.4.25/ssl/nvdetr.crt"
  SSLCertificateKeyFile "/apps/apache_2.4.25/ssl/nvdetr.key"
</VirtualHost>

I'm loading modules ssl_module, authn_dbm_module among others.

The ssl directory is  755, root/root and the crt and key files are daemon/root 644.

>From the error_log file:

[Mon Feb 05 15:42:00.247694 2018] [mpm_event:notice] [pid 5604:tid 139772366497600] AH00489:
Apache/2.4.25 (Unix) OpenSSL/1.0.1e-fips configured -- resuming normal operations
[Mon Feb 05 15:42:00.247945 2018] [core:notice] [pid 5604:tid 139772366497600] AH00094: Command
line: '/apps/apache_2.4.25/bin/httpd'

There is no HTTPS reference in the access_log file.

The only references to http in /var/log/messages is referring to syslogd.

The /var/log/dmesg just has boot info.

nb - this is RHEL 7.4

Ideas? Suggestions where to look?

Thanks,

Jeff Cauhape
IT Professional III
Department of Employment, Training and Rehabilitation
Phone 1-775-684-3804
Email: jpcauhape@nvdetr.org


Mime
View raw message