Filter
Top Products
Chapter 6 Configuring Apache Web Servers for Use With the Sun Crypto Accelerator 4000 Board 117
3. If you chose not to set up a VirtualHost, you must place the SSLEngine,
SSLCertificateFile, and SSLCertificateKeyFile directives in the
httpd.conf file, just above the SSLPassPhraseDialog directive.
If you answered no to the question in Step 7 of “To Enable the Apache Web Server”
on page 112, you will also be given additional information on how to generate key
material later:
4. Select 0 to quit when you finish with apsslcfg.
You may need a virtual host directive similar to
what is shown below:
<VirtualHost _default_:443>
SSLEngine on
SSLCertificateFile /etc/apache/keys/base_name-cert.pem
SSLCertificateKeyFile /etc/apache/keys/base_name-key.pem
</VirtualHost>
You must add the following line after all of your VirtualHost
definitions:
SSLPassPhraseDialog exec:/opt/SUNWconn/cryptov2/bin/apgetpass
Other SSL-related directives and their explanations
can be found in the Sun Crypto Accelerator documentation.
Other Apache-related directives may need to be configured
in order to start your Apache Web Server. Please refer
to your Apache documentation.
<Press ENTER to continue>
Since you did not create keys, you will need to
make sure that you have a key file and a certificate
file in place before enabling SSL for Apache.
You can create a new key file and certificate request
by selecting the "Generate a keypair and request a
certificate for Apache" option after choosing
"Work with Sun ONE and Apache keys" from the
apsslcfg main menu.