> Sounds like we either tear out our entire PKI infrastructure and start
> again, or I have to bring up a RA... Well, that's a hard choice ;-/
Just a thought: I think it should be possible for you to create a "second"
CA certificate with id 1, and sign it with your first CA, and generate
use that
We moved to apache 2 several months ago, but this looks familiar. Looking
through some old notes I found that I used the following options to configure
(for apache 1.3.27):
--enable-module=most \
--enable-shared=max \
--enable-module=so \
--enable-module=ssl \
--
Copy your certificate (and private key) to the apropiate places (It
depends on your ssl.conf). By the default configuration, they should go in
the directories ssl.crt and ssl.key under conf.
Carlos
> How can I replace the default HTTPS cert with my own? I installed apache13_modssl
> from ports,
On Fri, 7 Mar 2003, Justin Williams wrote:
> don't think you can make a key from a crt... only works the other way
> around... Tempted to do that, though...
You're right, it doesn't work the other way around. otherwise SSL would be
worthless...
It seems to me that your keys might be corrupted
I also had some strange problems with apache 2.0.44 on solaris 9, it
turned out to be that the module automatically uses conf/ssl.conf (which I
didn't expect). So my suggestion is that you should add all the ssl
configuration in this file only.
Carlos
> Dear all,
>
> first the properties of
