|
Home > Archive > WebSphere Application Server > November 2005 > ssl + ibm http + websphere
You are viewing an archived Text-only version of the thread.
To view this thread in it's original format and/or if you want to reply to
this thread please [click here]
| Author |
ssl + ibm http + websphere
|
|
|
| I have installed Verisign Digital Certificate on IBM HTTP Server.
I am able to access http://mydomain.com and http://mydomian.com/application
But I am not able to access through SSL https://mydoain.com and https://mydomain.com/application name.
I have already created 443 port virtual host on http server.
But still not able to access website with application using SSL.
For reference my httpd.conf file :-
LoadModule was_ap20_module /QSYS.LIB/QWAS6.LIB/QSVTAP20.SRVPGM
# Configuration originally created by Create HTTP Server.
Listen *:80
Listen *:443
DocumentRoot /www/webserver/htdocs
Options -ExecCGI -FollowSymLinks -SymLinksIfOwnerMatch -Includes -IncludesNoExec -Indexes -MultiViews
LogFormat "%h %l %u %t \"%r\" %>s %b \"%{Referer}i\" \"%{User-Agent}i\"" combined
LogFormat "%{Cookie}n \"%r\" %t" cookie
LogFormat "%{User-agent}i" agent
LogFormat "%{Referer}i -> %U" referer
LogFormat "%h %l %u %t \"%r\" %>s %b" common
CustomLog logs/access_log combined
LogMaint logs/access_log 7 0
ServerName www.mydomain.com
AccessFileName .htaccess
SetEnvIf "User-Agent" "Mozilla/2" nokeepalive
SetEnvIf "User-Agent" "JDK/1\.0" force-response-1.0
SetEnvIf "User-Agent" "Java/1\.0" force-response-1.0
SetEnvIf "User-Agent" "RealPlayer 4\.0" force-response-1.0
SetEnvIf "User-Agent" "MSIE 4\.0b2;" nokeepalive
SetEnvIf "User-Agent" "MSIE 4\.0b2;" force-response-1.0
SSLAppName QIBM_HTTP_SERVER_WEBSERVER
SSLCacheEnable
SSLEngine On
SSLClientAuth Optional
SetEnv HTTPS_PORT 443
DirectoryIndex index.html
<Directory />
Order Deny,Allow
Deny From all
</Directory>
<Directory /www/webserver/htdocs>
Order Allow,Deny
Allow From all
</Directory>
<VirtualHost *:80>
ServerName www.sasinbp.com
DocumentRoot /www/webserver/htdocs
</VirtualHost>
<VirtualHost *:443>
ServerName www.sasinbp.com
DocumentRoot /www/webserver/htdocs
</VirtualHost>
Can anyone please guide about how to configure http and websphere access https://wwww.mydomain.com and https://ww.mydomain.com/application name.
Is any other settings required to access website using SSL on HTTP Server and WebSphere Side?
| |
| Ian Burnett 2005-11-16, 6:08 pm |
| uskulkarni@hotmail.com wrote:
> I have installed Verisign Digital Certificate on IBM HTTP Server.
>
>
> I am able to access http://mydomain.com and http://mydomian.com/application
>
> But I am not able to access through SSL https://mydoain.com and https://mydomain.com/application name.
>
> I have already created 443 port virtual host on http server.
> But still not able to access website with application using SSL.
>
> For reference my httpd.conf file :-
>
> [snip]
>
> Can anyone please guide about how to configure http and websphere access https://wwww.mydomain.com and https://ww.mydomain.com/application name.
>
> Is any other settings required to access website using SSL on HTTP Server and WebSphere Side?
I'm not familiar with iSeries, but am familiar with security
configuration of WebSphere and HTTP server on distributed platforms.
Please bear with me if I'm unsure of that platform's security system.
First thing - what versions of HTTP Server and WebSphere are you using?
Before configuring do you have the HTTP server serving files *without*
involving the app server in the equation? Remove the line in httpd.conf
which loads WebSphere plugin module, restart the web server and see what
happens.
In the httpd.conf file above, I can't see where you specify the location
of the certificate and key files for the SSL configuration. When you say
you installed the certificate, what did you do with it and what
configuration steps did you take?
What messages are you getting from the HTTP server access_log,
error_log, ssl_access_log and ssl_error_log files? Is the HTTP server
actually listening on port 443?
Hope this helps.
Ian
--
Ian Burnett :: IBM Hursley, UK
|
|
|
|
|