Cannot view https on installed cert

**Murtaza_t** · 01-31-2006 06:45 AM

I am not sure if this works for you but I had this same problem, SSL getting installed successfully but site with https gave "Page cannot be displayed" so I just did this :

Code:

]# httpd -t
]# service httpd stop
]# service httpd startssl
]# service httpd start

Hope that solves your prob as well

Secret Agent · 01-31-2006 06:54 AM

No that didn't solve it.

I would appreciate if someone can assist on this with a resolution

Secret Agent · 01-31-2006 04:52 PM

Here we go:

root@server2 [/usr/local/apache/logs]# tail -f ssl_engine_log
[31/Jan/2006 16:35:08 23417] [info] Init: Configuring temporary DH parameters (512/1024 bits)
[31/Jan/2006 16:35:12 23448] [info] Init: 2nd startup round (already detached)
[31/Jan/2006 16:35:12 23448] [info] Init: Reinitializing OpenSSL library
[31/Jan/2006 16:35:12 23448] [info] Init: Seeding PRNG with 136 bytes of entropy
[31/Jan/2006 16:35:12 23448] [info] Init: Configuring temporary RSA private keys (512/1024 bits)
[31/Jan/2006 16:35:12 23448] [info] Init: Configuring temporary DH parameters (512/1024 bits)
[31/Jan/2006 16:35:12 23448] [info] Init: Initializing (virtual) servers for SSL
[31/Jan/2006 16:35:12 23448] [warn] Init: SSL server IP/port conflict: domain1.com:443 (/usr/local/apache/conf/httpd.conf:22441) vs. domain1.com:443 (/usr/local/apache/conf/httpd.conf:26511)
[31/Jan/2006 16:35:12 23448] [warn] Init: SSL server IP/port conflict: domain1.com:443 (/usr/local/apache/conf/httpd.conf:22368) vs. domain1.com:443 (/usr/local/apache/conf/httpd.conf:26477)
[31/Jan/2006 16:35:12 23448] [warn] Init: You should not use name-based virtual hosts in conjunction with SSL!!

So what am I supposed to do? These SSL certs were all installed via WHM as usual and given "certification passed". How do I correct this?

**chud67** · 02-01-2006 03:09 PM

Originally Posted by Secret Agent

[31/Jan/2006 16:35:12 23448] [warn] Init: SSL server IP/port conflict: domain1.com:443 (/usr/local/apache/conf/httpd.conf:22441) vs. domain1.com:443 (/usr/local/apache/conf/httpd.conf:26511)
[31/Jan/2006 16:35:12 23448] [warn] Init: SSL server IP/port conflict: domain1.com:443 (/usr/local/apache/conf/httpd.conf:22368) vs. domain1.com:443 (/usr/local/apache/conf/httpd.conf:26477)
[31/Jan/2006 16:35:12 23448] [warn] Init: You should not use name-based virtual hosts in conjunction with SSL!!

So what am I supposed to do? These SSL certs were all installed via WHM as usual and given "certification passed". How do I correct this?

I'm getting the same thing. Anyone?

Secret Agent · 02-02-2006 07:06 AM

Someone please help out. This has been going on for a few days too much

**simplestar** · 02-02-2006 10:34 PM

I think I got the answer

because my SSL site just stopped working for who knows what reason. I thought the config went corupt because I tried the same stuff. It seems cPanel is having a problem recognizing the SSL site. This is the command my DC suggested I use and it worked for me.

---command---
/scripts/restartsrv httpd

simple eh? I hope it works for you

PS: Don't ask why this command worked and not directly restarting apache.

**tuxdesk** · 02-11-2006 11:39 AM

Please edit the virtual host entry of the domain in httpd.conf as shown below
<VirtualHost xxx.202.68.167:443> and also check is there any NameVirtualHost entry for that same ip. If not add NameVirtualHost one and please let me know the result

**d-woo** · 02-15-2006 01:15 AM

This should help.

Overview
------------

1. change httpd.conf by removing the :443 portion
2. to remove the old cert files,
3. restart Apache then
4. reinstall the cert via WHM.

Details
---------

I use WinSCP...you can use PUTTY

Step 1. Most important to do this before step 2 or Apache will not restart

Remove the your.domain.com:443 portion from the /usr/local/apache/conf/httpd.conf file.

Remove everything below related to your domain of the SSL in question:

Code:

<IfDefine SSL>
<VirtualHost 69.57.159.148:443>
ServerAdmin webmaster@yourdomain.com
DocumentRoot /home/domainusername/public_html
BytesLog domlogs/yourdomain.com-bytes_log
ServerName yourdomain.com
CustomLog /usr/local/apache/domlogs/yourdomain.com-ssl_log "%t %{version}c %{cipher}c %{clientcert}c"
User domainusername
Group domainusername
SSLEnable
SSLCertificateFile /usr/share/ssl/certs/yourdomain.com.crt
SSLCertificateKeyFile /usr/share/ssl/private/yourdomain.com.key
SSLLogFile /var/log/yourdomain.com
UserDir public_html
SetEnvIf User-Agent ".*MSIE.*" nokeepalive ssl-unclean-shutdown
</VirtualHost>
</IfDefine>

Step 2. Remove the following cert files that are specific to this domain's cert

/usr/share/ssl/certs/www.yourdomain.com.crt
/usr/share/ssl/certs/www.yourdomain.com.cabundle
/usr/share/ssl/private/www.yourdomain.com.key

---GO TO WHM----
Step 3. Restart Apache

( or via command line)
/etc/rc.d/init.d/httpd stop
/etc/rc.d/init.d/httpd start

Step 4. In WHM in the SSL/TLS section (towards the bottom)
a. click Install an SSL Certificate and Setup the Domain
b. enter your .CRT contents in the top box
c. enter your RSA Key contents in the 2nd box
d. a standard .CA bundle file might appear in the third box. Leave it there or leave it blank unless this is a chained SSL.

If this is a chained SSL, you will need to paste the .CA contents there in the 3rd box.

e. click the button Do It at the top (above the first box).

You should see a successfully installed message and Apache/HTTPD should restart automatically

LinkBack

Thread Tools

SSL Cert added but can't use https?

SSL cert installed; no https connection

ssl cert, https, will not work.

HELP: Installed SSL Cert, but https:// "page not found"