Here is my config

Multiple Virtual Hosts with SSLEnabled
One KeyFile - multicerts.kdb
One StashFile - multicertStash.sth

All Virtual Hosts reference the KeyFile and StashFile

When SSL is tested IHS always serves the default Cert in the  KeyFile.

Is there a way to specify in the conf file what cert to use???

Thanks

[ Post a follow-up to this message ]

To use a specific SSL certificate use SSLServerCert directive in httpd.conf
file
You can point each of the VirtualHost to a different certificate by using
this directive. If this directive is not present the whichever certificate
is marked as default in your kdb will be used.

Sunit

<mevans@johnson.ca> wrote in message
news:1721979151.1127921237113.JavaMail.wassrvr@ltsgwas007.sby.ibm.com...
>
> Here is my config
>
> Multiple Virtual Hosts with SSLEnabled
> One KeyFile - multicerts.kdb
> One StashFile - multicertStash.sth
>
> All Virtual Hosts reference the KeyFile and StashFile
>
> When SSL is tested IHS always serves the default Cert in the  KeyFile.
>
> Is there a way to specify in the conf file what cert to use???
>
> Thanks

[ Post a follow-up to this message ]

Thanks - I've added that directive to each virtual host...However I now get 
the following error in the IHS error.log

[Wed Sep 28 14:02:58 2005] [crit] SSL0227E: SSL Handshake Failed, Sp
ecified label could not be found in the key file.

For the SSLServerCert directive I specified the cert name as is appears in t
he iKeyMan inside quotes - "CertName"

Any insight???

[ Post a follow-up to this message ]

Looks like you are not using the correct label in SSLServerCert directive.
When you created certificates in ikeyman you must have labeled them. Use
this label name in SSLServerCert directive.

Sunit

<mevans@johnson.ca> wrote in message
news:1122439442.1127925606491.JavaMail.wassrvr@ltsgwas007.sby.ibm.com...
> Thanks - I've added that directive to each virtual host...However I now
> get the following error in the IHS error.log
>
> [Wed Sep 28 14:02:58 2005] [crit] SSL0227E: SSL Handshake Failed,
> Specified label could not be found in the key file.
>
> For the SSLServerCert directive I specified the cert name as is appears in
> the iKeyMan inside quotes - "CertName"
>
> Any insight???

[ Post a follow-up to this message ]

I've verified the Cert Label and all matches. Is it possible that the quotes
 (") around the Cert Name would cause the error?

Mark

[ Post a follow-up to this message ]

Cert label should not have quotes (")

Sunit

<mevans@johnson.ca> wrote in message
news:802443607.1128102035774.JavaMail.wassrvr@ltsgwas007.sby.ibm.com...
> I've verified the Cert Label and all matches. Is it possible that the
> quotes (") around the Cert Name would cause the error?
>
> Mark

[ Post a follow-up to this message ]