Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 2 replies
  • Subscribers 0 subscribers
  • Views 9404 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Puremessage on Unix - CA Signed SSL Certificate for End User Interface

Codger
Is anyone using a CA Signed Certificate for the End User Interface? The only alternatives mentioned in the documentation are for self-signed certificates. Our Security folks frown on that for end user applications. Thanks, Bob Shafer University of Denver
:15293


This thread was automatically locked due to age.
  • 0

    Hi Bob,

    You should be able to add the certificate to the apache configuration:

    /opt/pmx/etc/manager/httpd2/ssl/http.conf

    Within the <VirtualHost *:28443> tags you you can add certificate details like this:

    SSLCertificateKeyFile etc/manager/httpd2/private.key

    SSLCertificateFile etc/manager/httpd2/mydomain.pem

    SSLEngine On

    In the above example, you'd need to put the corresponding private and public keys here, and make them readable by the 'pmx' user:

    /opt/pmx/etc/manager/httpd2/private.key

    /opt/pmx/etc/manager/httpd2/mydomain.pem

    Once you are ready restart the service for the changes to take effect:  su - pmx -c "pmx-httpd restart "

    Hope this helps,

    Tom.

    :15309
Unfiltered HTML