I don't have the full answer to your problem, but a glance at your configs shows one problem: you can't have more than one virtual host name per IP using SSL. If you want to host 3 domains on SSL, you need 3 IPs assigned to your webserver.
-Eric On October 2, 2001 06:42 pm, Robert Mazur wrote: > I have FAQ'd and mail archived myself to death....still have this problem > though... > > TRYING TO: > Turn my Apache/tomcat install (virtual hosting 3 sites) into a SLL-aware > Apache server. > > RESULT: > ssl_engine_log says: > <snip - all good data saying ssl is coming up, then...> > (servername.somedomain.com:443) RSA server certificate CommonName (CN) > `www.mydomain.com' does NOT match server name!? > This is true, but the server name does not have to be the domain name of > the site, does it? > > DETAIL: > After a LONG battle getting "apachectl startssl" to launch (including it > asking me for the password) without errors, > I can not get a secured page to come up. Instead I get a Page Not Found, > and "DNS server not found" error > in the browser. No errors on the server. > > To make my httpd.conf, I took the resulting "httpd.conf.original" and > modified it for my virtual hosting and such. Bascially, I copied the whole > ssl block at the bottom of httpd.conf.original, and pasted into my original > httpd.conf. I have 3 virtual hosts(two shown below). I added just two > directives to my virtual host section of the doamin that needs ssl > support, like: > > <VirtualHost 63.229.30.179> > ServerName servername.somedomain.com > ServerAlias www.mydomain.com > DocumentRoot "/usr/local/apache_1.3.12/htdocs/mydomain" > # ----- next two were added ------------- > SSLCertificateFile /<path_to_my_crt_file> > SSLCertificateKeyFile /<path_to_my_key_file> > DirectoryIndex welcome.html > </VirtualHost> > <VirtualHost 63.229.30.179> > ServerName servername.somedomain.com > ServerAlias www.differentdomain.com > DocumentRoot "/usr/local/apache_1.3.12/htdocs/differentdomain" > DirectoryIndex welcome.html > </VirtualHost> > > So I guess I know I have a ServerName issue due to the ssl_engine_log > telling me: > (servername.somedomain.com:443)RSA server certificate CommonName (CN) > `www.mydomain.com' does NOT match server name!? > The servername in my Apache install has always been: > ServerName servername.somedomain.com > > But due to this error I switched it to: > ServerName www.mydomain.com > > However, the ssl_engine_log is getting something completely different > (servername.mydomain.com). Where is it reading this ServerName from? > > What am I missing, or forgetting? Is there something else I need to do so > that my www.mydomain.com knows it can be preceeded by > an https. > > Any hints or thoughts? > Thanks so much - Rob > p.s. I should be able to just call a secured page like this, right?: > https://www.mydomain.com/welcome.html > > ______________________________________________________________________ > Apache Interface to OpenSSL (mod_ssl) www.modssl.org > User Support Mailing List [EMAIL PROTECTED] > Automated List Manager [EMAIL PROTECTED] -- arctic bears - email and name services 25 email addresses@yourdomain CA$11.95/month DNS starting at CA$3.49/month - domains from CA$25.95/year for details contact [EMAIL PROTECTED] or visit http://www.arcticbears.com ______________________________________________________________________ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
