tags:

views:

15

answers:

1
+1  Q: 

Apache - Self assigned SSL Help

Hi,

How would I self assign a SSL Cert on Apache (XAMPP) on a Windows 2003 server? I have researched and the farest I got was a broken SSL Cert with "Common name" problem.

Post your guide or links here,

Thanks.

+1  A: 

If you are in development and using localhost, the common name of your ssl certificate should be localhost. If you are using a machine that uses dns (or the hosts file) you should use that host name as the certificate common name (cn). E.g. if you are using www.mydomain.com you should create a certificate with that name. You can also create a certificate with the name *.mydomain.com that you should be able to use on all subdomains of mydomain.com. You may want to read this tuturial on the subject.

klausbyskov  2010-10-20 11:05:07
Basically my VPS is on localhost, I link my subdomain using a "A-Record" to my VPS. I want the SSL to be on my sub domain. What do I do?
Raymond  2010-10-20 11:11:43
If you are going to be using this certificate in any kind of production environment you might aswell just go and buy one (noone but yourself will ever trust a self issued certificate). It sounds like you are having trouble generating a valid one, so I suggest you get a trial from http://www.instantssl.com/ssl-certificate-products/free-ssl-certificate.html
klausbyskov  2010-10-20 11:16:00
Remember to get one that mathces your A-record
klausbyskov  2010-10-20 11:16:23
What do you mean they wont trust? Also, matching the A-record?
Raymond  2010-10-20 11:25:11
I mean that a computer chooses to trust a certificate based on its certification path. All certificates (except root certificates) are issued by another certificate (the root, or intermediate root certificate). When you point your browser to a https site, your browser will check which root certificate issued the SSL certificate and check if this root certificate is trusted. You can see which root certificates are trusted on your machine by opening the certificates mmc snap in. If the ssl certificates issuer is not trusted the browser will warn you not to visit the website.
klausbyskov  2010-10-20 11:36:22
The thing with the matching a-record is what I explained above in the answer. If you have an a-record for www.yourdomain.com pointing the ip of your vps, the ssl certificate's name MUST be www.yourdomain.com, otherwise it will not work.
klausbyskov  2010-10-20 11:37:30

related questions

How do I add a MIME type to .htaccess?
Difference between the Apache HTTP Server and Apache Tomcat?
How do I support SSL Client Certificate authentication?
Why can't I connect to my CAS server with Perl's AuthCAS?
Cleanest & Fastest server setup for Django
Installing Apache Web Server on 64 Bit Mac
Running Apache alongside another web server?
Algorithm behind MD5Crypt
Can you compile Apache HTTP Server and redeploy its binaries to a different location ?
mod_rewrite rule to redirect all requests except for one specific path
How do I create a self signed SSL certificate to use while testing a web app.
Software for Webserver Log Analysis?
What is the difference between an endpoint, a service, and a port when working with webservices?
What are the proper permissions for an upload folder with PHP/Apache?
mod_rewrite to alias one file suffix type to another
How do you redirect HTTPS to HTTP?
Using mod_rewrite to Mimic SSL Virtual Hosts?
User authentication on Resin webserver
How do you set up Python scripts to work in Apache 2.0?
Block user access to internals of a site using HTTP_REFERER
.htaccess directives to *not* redirect certain URLs
How can I get the authenticated user name under Apache using plain HTTP authentication and PHP?
Make XAMPP/Apache serve file outside of htdocs
Apache/PHP: error_log per Virtual Host?
How do I track file downloads with apache/PHP