I have dehydrate properly renewing certs from Let's Encrypt (which I am using
successfully for mail authentication) and I ma trying to get them working for
Apache 2.4, but no luck so far.
I created aliases in /usr/local/etc/apache24/ pointing to the files in
/usr/local/etc/dehydrated/certs/doma
Thanks Yann,
I tried this and it works. I'm using 3rd party signed certificate on
Proxy end. I'll try with self-signed certificate for proxy and will check the
same.
Warm Regards,
Naveen Kumar Reddy N
IBM Middleware WAS-MQ Tower Lead ( WalMart )
Toll Free Number - 866-912-0282(B),85
On Mon, Feb 12, 2018 at 7:38 PM, Naveen Nandyala - Vendor
wrote:>
> When using Apache + Proxy + WAS
>
> Browser --> Apache --> Proxy --> WAS
Apache and Proxy are the same instance, the is Apache httpd doing SSL
on its client side with the Browser, and also doing SSL on its backend
side with the WA
Thank Yann,
From this I could understand below. Could you please confirm in my
understanding is correct?
When using IHS + Plugin + WAS.
Browser --> IHS --> Plugin --> WAS
We used to enable mutual auth between IHS and Plugin by exchanging their keys,
Mutual auth between Plugin and WAS
We have huge environment and we have seen some issue with merge plugin across
multiple WAS cells and clusters and its becoming more complicated to merge
plugin. So we are looking for alternate solution as Apache + Proxy instead of
Apache + Plugin.
Warm Regards,
Naveen Kumar Reddy N
From: Eric
On Sun, Feb 11, 2018 at 12:47 PM, Naveen Nandyala - Vendor <
naveen.nandy...@walmart.com> wrote:
> Hi,
>
>
>
> I’m using Apache HTTP server as a webserver and Websphere
> application server as an Application server. Apache is using Proxy to
> redirect requests from Apache to Websph
On Mon, Feb 12, 2018 at 6:36 PM, Yann Ylavic wrote:
> On Mon, Feb 12, 2018 at 5:16 PM, Naveen Nandyala - Vendor
> wrote:
>>
>> Below is my vhose entry.
>>
>>
>> ServerName Virtual:443
>> SetEnv vhostname virtual
>> Header add Set-Cookie "ROUTEID=.%{BALANCER_WORKER_ROUTE}e;
>> HttpOn
On Mon, Feb 12, 2018 at 5:16 PM, Naveen Nandyala - Vendor
wrote:
>
> Below is my vhose entry.
>
>
> ServerName Virtual:443
> SetEnv vhostname virtual
> Header add Set-Cookie "ROUTEID=.%{BALANCER_WORKER_ROUTE}e;
> HttpOnly;secure" env=BALANCER_ROUTE_CHANGED
> Include
> Include /u
Hi Yann,
Based on certificate I'm using I'm getting different error.
Below is my vhose entry.
ServerName Virtual:443
SetEnv vhostname virtual
Header add Set-Cookie "ROUTEID=.%{BALANCER_WORKER_ROUTE}e; HttpOnly;secure"
env=BALANCER_ROUTE_CHANGED
Include
Include
Hello,
Here you go.
Thanks.
Dave.
#httpd -S
VirtualHost configuration:
*:80 is a NameVirtualHost
default server git.example.com
(/usr/local/etc/apache24/Includes/git.conf:2)
port 80 namevhost git.example.com
(/usr/local/etc/apache24/Includes/git.conf:2)
Hi,
On Mon, Feb 12, 2018 at 2:25 PM, Naveen Nandyala - Vendor
wrote:>
> [Mon Feb 12 07:22:12.631833 2018] [ssl:warn] [pid 21729:tid
> 13999866992] AH02268: Proxy client certificate callback:
> (Virtual:443) downstream server wanted client certificate but none
> are configured
This is a diffe
We're going to need a tad more information to help you. Error log entries
(on 2.4, you might need to bump the log level for 404 errors), and the
relevant vhost configuration.
apachectl -S wouldn't hurt either.
On Mon, Feb 12, 2018 at 10:21 AM, David Mehler
wrote:
> Hello,
>
> Thank you. I've go
Hello,
Thank you. I've got mod_python uninstalled and mod_wsgi installed, and
apache restarted no problems. The issue is I'm not getting python
scripts working, I keep getting a 404.
Thanks.
Dave.
On 2/11/18, Frank Gingras wrote:
> You should use mod_wsgi instead. The last release of mod_pytho
Hi Yann,
Earlier I've downloaded Websphere Server Root certificate in Base-64
format. So I was using inform as pem as DER is not working.
Not I've downloaded in DER format and ran below command that you gave. After
restarting my apache and when I try to access url I see below error.
[
On Mon, Feb 12, 2018 at 10:24 AM, Yves Goergen
wrote:
> One more of those unpractical mailing lists... (I'm already deleting 99% of
> what I receive to ask a single question. This is more than the spam.)
One more of those users who think their issues should be resolved the
way they think...
>
>
One more of those unpractical mailing lists... (I'm already deleting 99%
of what I receive to ask a single question. This is more than the spam.)
Okay, so I'm not going to solve this problem server-side. The client
that gets the error will have to retry on its own more often and even
resend it
Hello,
On Mon, Feb 12, 2018 at 1:41 AM, Naveen Nandyala - Vendor
wrote:
>
> We don’t see this issue on Tomcat as soon as the tomcat servers are rebooted
> with new IP address apache is able to connect to Tomcat servers without any
> restart. Could you please let me know if we need to change anyth
Hi,
On Mon, Feb 12, 2018 at 1:30 AM, Naveen Nandyala - Vendor
wrote:
>
> /tmp/was.crt was created as below.
>
> Extracted root certificate from WAS.
> Converted .cer file to crt using below command.
>
> openssl x509 -inform PEM -in was.cer -out was.crt
Isn't "was.cer" rather in DER format? The a
18 matches
Mail list logo