[U2] AIX 5.3 IBMIHS Web Server

Sat, 16 Feb 2013 16:02:38 -0800 

Might anyone have any tips or tricks for getting SSL to work on the
IBMIHS/Apache 2.0.47 web server on an AIX 5.3 box?  The documentation I've
found on the web is byzantine at best and it would be fine if the commands
actually worked, but I keep getting odd error messages and stalled at every
turn.

I've upgrade the GSK so that the server will start with SSL enabled, I have
a virtual host configured, but I have no clue how to tie a specific
certificate to the VirtualHost.  Well, let's say I have clues, but nothing
is working.  Here's the <VirtualHost> stanza I have set up in httpd.conf:

<VirtualHost *:443>
        SSLEnable
        SSLClientAuth None
        SSLServerCert api.client.com
        ServerName api.client.com
        DocumentRoot /usr/www
        <Directory "/usr/www">
             Order Allow,Deny
             Allow From All
        </Directory>
        ErrorLog logs/api_error.log
        CustomLog logs/api_error.log common
</VirtualHost>

I've been able to generate a CSR and create a self-signed certificate, and
it would appear that I've even successfully imported that certificate into
my key database, as demonstrated by this command:

$ gsk7cmd -cert -details -db /usr/IBMIHS/ssl/client.kdb -label "
api.client.com" -pw "password"

...which produces the following output...

Label: api.client.com
Key Size: 512
Version: X509 V1
Serial Number: 00 DB 00 41 9A 19 77 7E 9F
Issued By: api.client.com
CLIENT
City, ST, US
Subject: api.client.com
CLIENT
City, ST, US
Valid From: Saturday, February 16, 2013 6:06:08 PM EST To: Saturday, April
17, 2032 7:06:08 PM EDT
Fingerprint: ...
Signature Algorithm: 1.2.840.113549.1.1.5
Trust Status: enabled

But even though this certificate is in the keyfile (and yes, I have a
KeyFile directive elsewhere in the httpd.conf file pointing to the
client.kdb file) I can't seem to associate it to the virtual host.  What am
I missing?

(And yes, I'm aware this is not specifically a U2 question but I need this
to provide web connectivity to a Unidata machine from a Rackspace hosted
server.  So in a way... it sorta is U2 related.)

Help?
_______________________________________________
U2-Users mailing list
U2-Users@listserver.u2ug.org
http://listserver.u2ug.org/mailman/listinfo/u2-users

Reply via email to