List Info

Thread: Using a Verisign Certificate for SSL
Using a Verisign Certificate for SSL
user name
 2006-03-28 18:30:17 
Here is a post from our Admin HTTP server with HTTPS enabled

17    ServerName AS400.cross-check.com 
18    Listen 10.210.250.1:80 
19    Listen 10.210.250.1:443 

76    <VirtualHost 10.210.250.1:443> 
77         SSLEngine On 
78         SSLAppName QIBM_HTTP_SERVER_CONFIG 
79         SSLClientAuth Optional 
80         SetEnv HTTPS_PORT 443 
81    </VirtualHost>

I would get rid of the SSLEngine Optional and enable the
SSLEngine On
which is commented out.  

Christopher Bipes
Information Services Director
CrossCheck, Inc.

-----Original Message-----
From: web400-bouncesmidrange.com [mailto:web400-bouncesmidrange.com]
On Behalf Of Joe Pluta
Sent: Tuesday, March 28, 2006 9:21 AM
To: 'Web Enabling the AS400 / iSeries'
Subject: [WEB400] Using a Verisign Certificate for SSL

"myinstance" is the instance name
"10.20.30.40" is the IP address of the iSeries
I've also got a location set up for validation; this is the
context used
to
get to WebSphere

I can get to http://10.20.30.40 and http://10.20.30.40:443,
but not to
https://10.20.30.40.

Some of the lines are broken by email formatting; hopefully
it's clear
which
ones.

Listen 10.20.30.40:80
Listen 10. 20.30.40:443
TimeOut 600

SSLEngine Optional
# SSLEngine On

SSLAppName QIBM_HTTP_SERVER_MYINSTANCE
SSLCacheEnable
SSLVersion TLSV1_SSLV3
SetEnv HTTPS_PORT 443

-- 
This is the Web Enabling the AS400 / iSeries (WEB400)
mailing list
To post a message email: WEB400midrange.com
To subscribe, unsubscribe, or change list options,
visit: htt
p://lists.midrange.com/mailman/listinfo/web400
or email: WEB400-requestmidrange.com
Before posting, please take a moment to review the archives
at http://archive.mi
drange.com/web400.
Using a Verisign Certificate for SSL
user name
 2006-03-28 21:18:29 
Chris, do you have a VirtualHostName directive early on in
your config?
When I tried to add a virtual host for the port, I got one
that looked like
this:

VirtualHostName 10.20.30.40:443

I just wondered if you had the same thing.  I'm going to
try the Virtual
Host without it this time.

Joe

> From: Chris Bipes
> 
> Here is a post from our Admin HTTP server with HTTPS
enabled
> 
> 17    ServerName AS400.cross-check.com
> 18    Listen 10.210.250.1:80
> 19    Listen 10.210.250.1:443
> 
> 76    <VirtualHost 10.210.250.1:443>
> 77         SSLEngine On
> 78         SSLAppName QIBM_HTTP_SERVER_CONFIG
> 79         SSLClientAuth Optional
> 80         SetEnv HTTPS_PORT 443
> 81    </VirtualHost>
> 
> I would get rid of the SSLEngine Optional and enable
the SSLEngine On
> which is commented out.


-- 
This is the Web Enabling the AS400 / iSeries (WEB400)
mailing list
To post a message email: WEB400midrange.com
To subscribe, unsubscribe, or change list options,
visit: htt
p://lists.midrange.com/mailman/listinfo/web400
or email: WEB400-requestmidrange.com
Before posting, please take a moment to review the archives
at http://archive.mi
drange.com/web400.
[1-2]

about | contact  Other archives ( Real Estate discussion Medical topics )