Hello! I installed Virtualmin on CentOS 7 Digitalocean droplet (pic1),
was created virtual server (pic2);
was imported Verisign CA certificate (medium+root) (pic3);
was updated certificate and key (pic4);
Copy to Webmin, Usermin, Dovecot, Postfix, ProFTPD (pic5);
Webmin, Usermin, works good with certificate (pic6): Dovecot, Postfix too (pic7). I used: openssl s_client -starttls smtp -connect 127.0.0.1:25
BUT APACHE SHOW WARNING MESSAGE when I use https(pic8) !!!
When i saw certificates paths you can see that apache uses self-signed certificate but not CA (pic9)
Analyzing it, I saw that the problem in APACHE GLOBAL CONFIGURATION, I opened /etc/httpd/conf.d/ssl.conf and you can see conflict (pic10) and (pic11)
SSLCertificateFile /etc/pki/tls/certs/localhost.crt SSLCertificateKeyFile /etc/pki/tls/private/localhost.key
and right configuration in /etc/httpd/conf/httpd.conf:
SSLCertificateFile /home/basil-student/ssl.cert SSLCertificateKeyFile /home/basil-student/ssl.key
I solved it, just turned off SSL engine in /etc/httpd/conf.d/ssl.conf (pic12) and restart APACHE
Problem was solved (pic13)
Can you add COPY TO APACHE button in SSL section?
Sincerely, Vasily
Comments
Submitted by JamieCameron on Wed, 04/13/2016 - 23:20 Comment #1
There should be no need for a "copy to Apache" button, because Apache is where the cert is being copied from!
Submitted by JamieCameron on Wed, 04/13/2016 - 23:21 Comment #2
Also, can you post that browser error in english? I'd like to see exactly what the browser is complaining about..
Submitted by basil1 on Wed, 05/18/2016 - 01:40 Comment #3
Submitted by basil1 on Wed, 05/18/2016 - 01:43 Comment #4
Yes, you can see this in English! It is serious bug, because https not work
Submitted by JamieCameron on Wed, 05/18/2016 - 02:13 Comment #5
Looks like a missing CA certificate. You need to download the right cert from your CA, then go to Server Configuration -> Manage SSL Certificate -> CA Certificate and upload it.