Solved

wrong ssl certificate, right domain.

Posted on 2004-10-08
1
192 Views
Last Modified: 2011-09-20
I have a site mysitefashion.com

I administer it using admin.mysitefashion.com

The httpd.conf file looks like this:


# A virtualhost for the main mysite website
<VirtualHost xxx.xxx.xx.xxx:80>
  ServerName www.mysitefashion.com
  DocumentRoot /home/hindrm/jakarta-tomcat-5.0.28/mysitesite/mysite
  CustomLog logs/mysite.log combined
  ErrorLog logs/mysite_error.log
  <Location /*.jsp>
    JkUriSet worker ajp13:localhost:8009
  </Location>
</VirtualHost>

# A virtualhost on the standard port 80 to redirect requests
# for the admin area to the real admin virtualhost on the ssl port
<VirtualHost xxx.xxx.xx.xxx:80>
  ServerName admin.mysitefashion.com
  CustomLog logs/public.log combined
  ErrorLog logs/public_error.log
  Redirect permanent / https://admin.mysitefashion.com
</VirtualHost>
# An SSL virtualhost for the main site
<VirtualHost xxx.xxx.xx.xxx:443>
  ServerName www.mysitefashion.com
  DocumentRoot /home/hindrm/jakarta-tomcat-5.0.28/mysitesite/mysite
  SSLEngine on
  SSLCertificateFile /etc/httpd/conf/ssl.crt/mysitemainssl.crt
  SSLCertificateKeyFile /etc/httpd/conf/ssl.key/mysitefashionsslprivate.key
  SSLCACertificateFile /etc/httpd/conf/ssl.crt/mysitemainsslCA.crt
  CustomLog logs/mysitesecure.log combined
  ErrorLog logs/mysitesecure_error.log
  <Location /*.jsp>
    JkUriSet worker ajp13:localhost:8009
  </Location>
</VirtualHost>

# An SSL virtualhost for the admin site
<VirtualHost xxx.xxx.xx.xxx:443>
  ServerName admin.mysitefashion.com
  DocumentRoot /home/hindrm/jakarta-tomcat-5.0.28/mysiteadminsite/mysiteadmin
  SSLEngine on
  SSLCertificateFile /etc/httpd/conf/ssl.crt/mysiteadminssl.crt
  SSLCertificateKeyFile /etc/httpd/conf/ssl.key/mysiteadminsslprivate.key
  CustomLog logs/mysiteadmin.log combined
  ErrorLog logs/mysiteadmin_error.log
  <Location /*.jsp>
    JkUriSet worker ajp13:localhost:8009
  </Location>
</VirtualHost>




the  xxx.xxx.xx.xxx part represents the IP address of my server (there is only one).  

when I browse to https://admin.mysitefashion.com I find that the certificate which is used is the signed one I have set up for the www.mysitefashion.com.  I'd like to know why the /mysiteadminssl.crt certificate is not used.

Can anyone help?
0
Comment
Question by:rosshind
1 Comment
 
LVL 15

Accepted Solution

by:
periwinkle earned 500 total points
ID: 12257799
SSL on Apache requires that you use a unique IP address - the reason that you are getting the first SSL site is because you are only using one IP address.
0

Featured Post

How to run any project with ease

Manage projects of all sizes how you want. Great for personal to-do lists, project milestones, team priorities and launch plans.
- Combine task lists, docs, spreadsheets, and chat in one
- View and edit from mobile/offline
- Cut down on emails

Join & Write a Comment

As Wikipedia explains 'robots.txt' as -- the robot exclusion standard, also known as the Robots Exclusion Protocol or robots.txt protocol, is a convention to prevent cooperating web spiders and other web robots from accessing all or part of a websit…
Introduction As you’re probably aware the HTTP protocol offers basic / weak authentication, which in combination with the relevant configuration on your web server, provides the ability to password protect all or part of your host.  If you were not…
This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're looking for how to monitor bandwidth using netflow or packet s…
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…

762 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

18 Experts available now in Live!

Get 1:1 Help Now