Still celebrating National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

SSL doesnt work in Apache 2.4.7

Posted on 2014-01-08
14
Medium Priority
?
855 Views
Last Modified: 2014-01-08
We had to configure a php application on our apache server. However during a IT audit, they told us that the apache version we had was having security vulnerabilities. So we installed a secondary Apache container with version 2.4.7.

now we have the older version is 2.2, which is fully functional and running both SSL and normal http.

However in the second container (even if turn off the older version). The SSL/https part of the new version or new container wont load. only the http part would load with no issues.

Im not much into apache, so any guidance on this matter would help . attached are my config files for both old(current http / https working) and new version 2.4.7 (ssl/https not working).

http://192.81.76.172/~testsr/Apacconfiguration.zip

Hoping any help would do.
0
Comment
Question by:rayboy28
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 8
  • 5
14 Comments
 
LVL 84

Expert Comment

by:Dave Baldwin
ID: 39766452
Are you getting an error message?  SSL is normally tied to a specific IP address associated with the domain name in the cert.  You will probably have to move the new server to the old IP address for SSL/TLS to work.
0
 

Author Comment

by:rayboy28
ID: 39766490
no specific error. it just that the https site wont load up. but the http site is fine.  this is even with the old container turned off.

But the old container, works fine both http and https.
0
 
LVL 58

Expert Comment

by:Gary
ID: 39766491
Further to Dave, are you telling us you are running two versions of Apache on the same server?
I cannot see how you can be loading SSL on the old version for an IP and trying to load it on another version for the same IP - it just wouldn't work.
Is this a standard SSL cert?
What is the link to the site?

And can you attach the two different httpd.conf and ssl.conf (probably one of these since they are/should be the same) files not folders with dozens of files that we have to go searching thru.
0
What is a Denial of Service (DoS)?

A DoS is a malicious attempt to prevent the normal operation of a computer system. You may frequently see the terms 'DDoS' (Distributed Denial of Service) and 'DoS' used interchangeably, but there are some subtle differences.

 

Author Comment

by:rayboy28
ID: 39766520
oh .. but i keep the older container off, when running the new apache. i dont run them together.

below is the link of the new zip file. of old (current working version) and new (http working / https not working)

http://192.81.76.172/~testsr/Apacheconfiguration2.zip
0
 
LVL 58

Expert Comment

by:Gary
ID: 39766547
After rereading the Q again I realised you mean seperate installations.
Whats the link - this would be a lot easier
What happens when you access by https?
Have you installed SSL on the new server?
Is the firewall blocking 443?
What do you get when checking here
http://www.sslshopper.com/ssl-checker.html

Is the new server on the same IP?
When starting httpd do you get any error messages about loading the ssl certs?
0
 

Author Comment

by:rayboy28
ID: 39766603
yes separate installations but on the same server. sorry i mentioned that wrong.
the link is of an internal data link between 2 data link sites. and is not put online.

Yes the certs are installed on the server in both installations. as mentioned in the older version, both http and https are working. While in the newer version only the https doesnt work.
0
 

Author Comment

by:rayboy28
ID: 39766605
the firewall is fine and is working
0
 
LVL 58

Expert Comment

by:Gary
ID: 39766614
And the other questions...
0
 

Author Comment

by:rayboy28
ID: 39766616
ill head to the office in 7 hours. will get you more details if any errors.
0
 
LVL 58

Expert Comment

by:Gary
ID: 39766646
::I'll be in bed by then::
0
 

Author Comment

by:rayboy28
ID: 39766651
:-). no worries. will leave them here.
0
 

Author Comment

by:rayboy28
ID: 39766652
if you could let me know if there is anything that i could check as well that would help.
0
 
LVL 58

Accepted Solution

by:
Gary earned 2000 total points
ID: 39766662
If there was a problem loading the certs they would/should show when starting httpd.
If its a misconfiguration the site I gave would likely show that error.

But without an error message or some details from the Apache log it's impossible to guess what else to check.
0
 

Author Comment

by:rayboy28
ID: 39766684
ok fine i will try to get max details.
0

Featured Post

Google Certified Professional - Cloud Architect

This course (1 of 3) is designed to help students who are interested in Google Cloud Platform (GCP) to become familiar with the platform, navigate the console and learn its capabilities. It will also prepare students for the Google Cloud Architect certification exam.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Hi, in this article I'm going to teach you how to run your own site, and how to let people in (without IP). I'll talk about and explain each step... :) By the way, everything in this Tutorial is completely free and legal. This article is for …
It is possible to boost certain documents at query time in Solr. Query time boosting can be a powerful resource for finding the most relevant and "best" content. Of course the more information you index, the more fields you will be able to use for y…
If you're a developer or IT admin, you’re probably tasked with managing multiple websites, servers, applications, and levels of security on a daily basis. While this can be extremely time consuming, it can also be frustrating when systems aren't wor…
This is my first video review of Microsoft Bookings, I will be doing a part two with a bit more information, but wanted to get this out to you folks.

715 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question