Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Install SSL Certificates for XAMPP Apache

Tags:

ssl

openssl

apache

rsa

xampp

I generated server.key using openssl CLI and then generated server.csr from that. Then I submitted server.csr to my company (this is all internal) and they gave me a text file which I renamed to server.crt

I followed this guide to install SSL Cert for XAMPP's Apache

https://knowledge.verisign.com/support/ssl-certificates-support/index?page=content&actp=CROSSLINK&id=AR193

Basically I edited the httpd-ssl.conf file with below:

SSLCertificateFile "conf/ssl.crt/server.crt"

SSLCertificateKeyFile "conf/ssl.key/server.key"

SSLCACertificatePath "conf/ssl.crt/"
SSLCACertificateFile "conf/ssl.crt/server.crt"

When I restarted my Apache server, it failed and gave error:

[Thu May 08 14:14:48.014710 2014] [ssl:warn] [pid 1924:tid 272] AH01906: RSA server certificate is a CA certificate (BasicConstraints: CA == TRUE !?)
[Thu May 08 14:14:48.016664 2014] [ssl:warn] [pid 1924:tid 272] AH01907: RSA server certificate is not a leaf certificate (BasicConstraints: pathlen == 2 > 0 !?)
[Thu May 08 14:14:48.016664 2014] [ssl:warn] [pid 1924:tid 272] AH01909: RSA certificate configured for www.myservername.com:443 does NOT include an ID which matches the server name
[Thu May 08 14:14:48.016664 2014] [ssl:emerg] [pid 1924:tid 272] AH02238: Unable to configure RSA server private key
[Thu May 08 14:14:48.016664 2014] [ssl:emerg] [pid 1924:tid 272] SSL Library Error: error:0B080074:x509 certificate routines:X509_check_private_key:key values mismatch
[Thu May 08 14:14:48.016664 2014] [ssl:emerg] [pid 1924:tid 272] AH02311: Fatal error initialising mod_ssl, exiting. See C:/xampp/apache/logs/error.log for more information

Anyone knows why? How to fix this?

Here are my system info

Windows NT LGLAC046 6.1 build 7600 (Windows Server 2008 R2 Enterprise Edition) i586 

Apache/2.4.4 (Win32) OpenSSL/0.9.8y PHP/5.4.19 

OPENSSL_CONF    C:/xampp/apache/bin/openssl.cnf 

SSL Version     OpenSSL/0.9.8y
like image 786
HP. Avatar asked Sep 30 '22 20:09

HP.

1 Answers

I generated server.csr using openssl CLI and then generated server.key from that
You're supposed to generate a private key first:

openssl genrsa -des3 -out server.key 1024

then generate a csr:

openssl req -new -key server.key -out server.csr

If you're requesting a new certificate, you then send the CSR to the CA. It sounds like what you have is a CA certificate, not a server certificate.

like image 146
automaton Avatar answered Oct 18 '22 09:10

automaton
Sign in to Comment

Related questions

Error loading pyodbc module while running on Apache
Codeigniter deny access to directory of controllers with apache config
gitweb and per project http authentication
IP address is shown in address bar instead of domain
Error "Mis-cased URI or unacceptable Unicode in URI" in mod_hfs_apple after updating mac os x from 10.8.3 to 10.8.4
Adding custom file system support to Apache VFS
Django getting lots of SuspiciousOperation: Invalid HTTP_HOST header
Is it possible to change a subdomain's directory with .htaccess?
Why PHP include is working on local server and not on website
How to configure Sonar to authenticate using SSL Client Certificates
PHP debugging: How to configure Xdebug (for example, to use it for Vdebug -Vim plugin-)
When do ini files in /etc/php.d/ get loaded?
Dropbox style URL, without using hashes or params
Keep the string prepended in request uri
Trying to set up flask with mod_wsgi
VirtualHost setup always doesn't work
WAMP Server home page opening fine in android but deployed web pages not loading
Two separate django sites in WSGI (root and /two)
Change document root folder of Apache web server on Linux
Http POST drops port in URL

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!