How to enable SSL on Apache 2 for SLES 9

This document (3507096) is provided subject to the disclaimer at the end of this document.

Environment

Novell SUSE Linux Enterprise Server 9
Apache 2.0

Situation


Resolution

  1. Install the Apache web server.
    If the web server have not been installed, go to YaST-> Install and Remove Software, under Filter choose Selections and from the list check Simple Web server. Click Accept and all the necessary packages for Apache 2 will be installed.
  2. Basic configuration.
    After installing Apache 2, go to YaST -> Network Services -> HTTP Server. Under HTTP service choose enable. Click Finish. This will configure basic Apache functionality. Do not use YaST to configure SSL for default host.
  3. Import Server certificates.
    During the install of SLES 9, the install prompts for creation of Certificate Authority (CA). It will also create server certificates and it will import common server certificates to /etc/ssl/servercerts. There should be two files: servercert.pem and serverkey.pem. If these two files exist go to step 4. If these two files do not exist go to YaST -> Security and Users -> CA Management. The default CA should be created. If not, it has to be created first. Click on the CA that will be used to host the apache certificates and click Enter CA. The CA password needs to be entered to gain access. Click on certificates to get the list of certificates created for CA. If there is no appropriate certificate to be used with apache, create one. Click on the certificate that will be used with Apache and click on Export -> Export as common server certificate. The server certificate and server key will be exported into /etc/ssl/servercerts directory as servercert.pem and serverkey.pem.
  4. Enable SSL for default host.
    Copy the file /etc/apache2/vhost.d/vhost-ssl.template to the same location as vhost-ssl.conf. Open vhost-ssl.conf for editing and change it as follows:
    In the entry change the directive SSLCertificateFile to point to /etc/ssl/servercerts/servercert.pem and SSLCertificateKeyFile to point to /etc/ssl/servercerts/serverkey.pem. Save the file.
  5. Enable SSL and restart Apache 2.
    Open /etc/sysconfig/apache2 and change the appropriate line to read:
    APACHE_SERVER_FLAGS="SSL"
    Save the file and restart apache by running
    rcapache2 restart
Apache 2 should be running on port 80 and 443 with SSL on a default port now.

Additional Information

This TID was formerly known as TID 10100478.

Disclaimer

This Support Knowledgebase provides a valuable tool for SUSE customers and parties interested in our products and solutions to acquire information, ideas and learn from one another. Materials are provided for informational, personal or non-commercial use within your organization and are presented "AS IS" WITHOUT WARRANTY OF ANY KIND.

  • Document ID:3507096
  • Creation Date: 25-Oct-2006
  • Modified Date:03-Mar-2020
    • SUSE Linux Enterprise Server
    • SUSE Linux Enterprise Server

< Back to Support Search

For questions or concerns with the SUSE Knowledgebase please contact: tidfeedback@suse.com

SUSE Support Forums

Get your questions answered by experienced Sys Ops or interact with other SUSE community experts.

Join Our Community

Support Resources

Learn how to get the most from the technical support you receive with your SUSE Subscription, Premium Support, Academic Program, or Partner Program.


SUSE Customer Support Quick Reference Guide SUSE Technical Support Handbook Update Advisories
Support FAQ

Open an Incident

Open an incident with SUSE Technical Support, manage your subscriptions, download patches, or manage user access.

Go to Customer Center