« previous next »
Pages: [1]

Author Topic: [SOLVED] Import Startcom SSL in zentyal  (Read 9078 times)

Luisa

  • Zen Apprentice
  • *
  • Posts: 4
  • Karma: +0/-0
    • View Profile
[SOLVED] Import Startcom SSL in zentyal
« on: January 04, 2012, 04:57:12 pm »
Hello everyone,
I am using for about 2 days zentyal, before I used ispconfig 3.
I am very happy with this distro, but I have a problem! With ispconfig working pretty well. I want to solve the problem and continue using Zentyal so I ask for help
StartCom authority to use ssl in my domain secure.domain.tdl
I do not want to use self-signed certificates for this sub-domain but what I have been provided by StartCom
My setup was working and would like to implement the following zentyal:

    SSLCertificateFile /etc/apache2/sites-available/user-ebox-secure.domain.tdl/secure.domain.tdl.crt
    SSLCertificateKeyFile /etc/apache2/sites-available/user-ebox-secure.domain.tdl/secure.domain.tdl.key
    SSLCertificateChainFile /etc/apache2/sites-available/user-ebox-secure.domain.tdl/sub.class1.server.ca.pem
    SSLCACertificateFile /etc/apache2/sites-available/user-ebox-secure.domain.tdl/ca.pem

Where do I enter these directives are not sure rewritten?
Zentyal version 2.2.4 and domain.dl is example
Regards

« Last Edit: January 05, 2012, 04:23:57 pm by Luisa »
Logged

Luisa

  • Zen Apprentice
  • *
  • Posts: 4
  • Karma: +0/-0
    • View Profile
Re: Import Startcom SSL in zentyal
« Reply #1 on: January 05, 2012, 04:22:59 pm »
I found a simple solution.
The situation is this: a self-signed certificate from zentyal web and a certificate from StartCom SSL.

- First step is to comment in /usr/share/zentyal/stubs/webserver/vhost.mas
the following line # SSLCertificateFile / etc/apache2/ssl/ssl.pem

- Create the folder / etc/apache2/ssl/startcomssl and copy certificates

- Set folder permissions and certified with chmod 400

So now if you want to use the certificate zentyal assuming you have domain.com
- go /etc/apache2/sites-available/user-ebox-domain.com/ (custom configuration file)
- create the configuration file domain.com and you enter:
         SSLCertificateFile /etc/apache2/ssl/ssl.pem
-restart apache:)

while if you want to use the certificate that has been provided by StartCom SSL assuming you have secure.domain.com
performed the same steps as before but in the (custom configuration files) insert:

         SSLCertificateFile / etc/apache2/ssl/startcom/ssl.crt
         SSLCertificateKeyFile / etc/apache2/ssl/startcom/ssl/ssl.key
         SSLCertificateChainFile / etc/apache2/ssl/startcom/sub.class1.server.ca.pem
         SSLCACertificateFile / etc/apache2/ssl/startcom/ca.pem

apache-restart ^ _ ^

We believe that with this solution for all domains with ssl support necessary to make this change from the shell
A work of 5 minutes to help us to keep order in our distribution.
I do not think this is the only solution, but for me it's okay.
Hello
« Last Edit: January 05, 2012, 04:24:53 pm by Luisa »
Logged
Pages: [1]
« previous next »