Apache 2 Godaddy SSL error file does not exist or is empty.
Hi,
I am trying to get SSL working on our linux apache server with a Godaddy SSL cert. I have followed Godaddy's steps and edited the ssl.conf file so that SSLCertificateFile, SSLCertificateKeyFile, and SSLCertificateChainFile all point to their respective files located in /etc/httpd/conf as directed by Godaddy. When I try to start the apache server I get the error "Syntax error on line 117 of /etc/httpd/conf.d/ssl.conf
SSLCertificateFile: file '/etc/httpd/conf/server.cr
It does this for all three of the files. Can anyone help me get this working?
Thank you
I am trying to get SSL working on our linux apache server with a Godaddy SSL cert. I have followed Godaddy's steps and edited the ssl.conf file so that SSLCertificateFile, SSLCertificateKeyFile, and SSLCertificateChainFile all point to their respective files located in /etc/httpd/conf as directed by Godaddy. When I try to start the apache server I get the error "Syntax error on line 117 of /etc/httpd/conf.d/ssl.conf
SSLCertificateFile: file '/etc/httpd/conf/server.cr
It does this for all three of the files. Can anyone help me get this working?
Thank you
ASKER
Shouldn't apache be able to read the file if it is in the apache conf directory? How do I check this?
ls -l /etc/httpd/conf/server.crt
if the file is owned by root (as maybe you were root when you installed it)
and it is set to -rw------
then root can read and write but but your user can not.
if the file is owned by root (as maybe you were root when you installed it)
and it is set to -rw------
then root can read and write but but your user can not.
ASKER
It shows as "-rwxrwxrwx 1 root root 1761 Nov 17 18:33 /etc/httpd/conf/server.crt
no thats fine for the moment - everyone has full access to it. leave it like that for the moment but tighten it up again when you are finished testing (maybe set it to
chmod 600 /etc/httpd/conf/server.crt
and
chown nobody:nobody /etc/httpd/conf/server.crt
(swap nobody for the name of the user that apache uses)
Next check you have lines like these in your httpd.conf file :
SSLCertificateFile /etc/httpd/conf/server.crt
SSLCertificateKeyFile /etc/httpd/conf/server.key
If not put them in.
Restart apache.
test again.
chmod 600 /etc/httpd/conf/server.crt
and
chown nobody:nobody /etc/httpd/conf/server.crt
(swap nobody for the name of the user that apache uses)
Next check you have lines like these in your httpd.conf file :
SSLCertificateFile /etc/httpd/conf/server.crt
SSLCertificateKeyFile /etc/httpd/conf/server.key
If not put them in.
Restart apache.
test again.
ASKER
Added the lines and restarted, same error
ASKER
I commented out those lines in ssl.conf and tried to start apache and it gives me Starting httpd: [FAILED]. It was working before without SSL but now it is not. Any help would be appreciated just to get this back up and running even without ssl for now
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Thank you for all the help! It turns out I had to uncomment the line:
SSLCipherSuite ALL:!ADH:!EXPORT56:RC4+RSA
To make it work.
SSLCipherSuite ALL:!ADH:!EXPORT56:RC4+RSA
To make it work.
If it is not that then you need to make sure you have the right format. SSL certs come in about 4 or 5 different file formats