|
|||||||||
|
|||||||||
| |||||||||
|
|||||||||
|
|||||||||
| |||||||||
|
|
|
| |||||||||
 |
|
|
«
Previous Thread
|
Next Thread
»
|
Thread Tools | Search this Thread | Rate Thread | Display Modes |
Dev Shed Forums Sponsor:
|
|
|
|
#1
February 29th, 2004, 10:06 AM
|
|||
|
|||
|
More than 1 SSL certificate on a server
Hello together!
I've got the following problem: At our server there should be 2 different domains with SSL, of course, with 2 different IP addresses. In the file "ssl_vhost.conf" (we are using Confixx 2.0 Prof.) I have added 2 virtual hosts for that reasons, each with a different self-made ssl certificate. The "ssl_vhost.conf"-file looks as following: ---- NameVirtualHost *IP1*:443 NameVirtualHost *IP2*:443 <VirtualHost *IP1*:443> [...] SSLEngine on SSLCertificateFile /etc/apache/ssl.crt/certificate1.crt SSLCertificateKeyFile /etc/apache/ssl.key/certificate1.key </VirtualHost> <VirtualHost *IP2*:443> [...] SSLEngine on SSLCertificateFile /etc/apache/ssl.crt/certificate2.crt SSLCertificateKeyFile /etc/apache/ssl.key/certificate2.key </VirtualHost> ---- Although as it can be seen above both IPs have different SSL certificates the browser always gets the "certificate1" that causes that the 1. page opens without error, but the 2. one displays an error message that the domain name is invalid. What have I done wrong in the configuration or what could the problem be so that the server send always the first certificate to the browser? Thanks in advance for your help
|
|
#2
April 11th, 2004, 01:49 PM
|
||||
|
||||
|
Exactly the same problem here... I'm using OpenSSL v0.9.7d and Apache 2.0.49
Anyone knows how to solve this? Is it possible to have multiple certificates for different names in the same server?
|
|
#4
April 11th, 2004, 02:48 PM
|
||||
|
||||
Not solved
Someone has said to me that you can't configure more than a single SSL server per IP. He said this is an inherent limitation of the SSL architecture, which works at IP level. He said that the only solutions are either get more IPs or use different ports for each certificate.
Any other suggestion? It's really hard to believe that this is it  I saw this Code:
<VirtualHost *:443>
ServerName cvs.company.com
ServerAlias *.cvs.company.com
...
SSLEngine on
SSLCertificateFile conf/ssl/cvs.cronos.be.crt
SSLCertificateKeyFile /conf/ssl/cvs.cronos.be.key
</VirtualHost>
at URL which suggests there's a possibility for multiple names on a single secure server.... Last edited by Kronuz : April 11th, 2004 at 02:56 PM.
|
|
#5
April 12th, 2004, 03:00 PM
|
||||||
|
||||||
|
Quote:
Quote:
Quote:
And, follow-up from the apache homepage here: Quote:
so: you better believe it... HTH, M.
__________________
-- Manuel Hirsch - Linux, FreeBSD, programming, administration articles, tutorials and more.
|
|
#6
May 9th, 2004, 04:34 AM
|
|||
|
|||
|
There are two IPs
Hello!
Of course, it's not possible to have 2 SSL certificates for ONE IP, but as I wrote I have TWO IPs for this server, but it even doesn't want to work with two IPs!? Does anybody have an idea what the problem might be? Thanks again
|
|
| Viewing: Dev Shed Forums > System Administration > Security and Cryptography > More than 1 SSL certificate on a server |
| Thread Tools | Search this Thread |
| Display Modes | Rate This Thread |
|
|
 |
|
|
Del.icio.us
Digg
Google
Spurl
Blink
Furl
Simpy
Y! MyWeb
(it's not difficult) 
Linear Mode
