Novell eBook Reader Manual

A SERVICE OF

next previous

Modifying Apache 41

Manual 3/17/03103Novell Confidential 06appb.fm last saved 4/14/03

<Directory "C:/PROGRA~1/Novell/Tomcat/webapps/eMFrame/META-INF/">

AllowOverride None

deny from all

</Directory>

JkMount /eMFrame/webacc ajp13

JkMount /eMFrame/webacc/* ajp13

JkMount /eMFrame/*.jsp ajp13

8 In this same Apache ssl.conf file, add a line for a second SSL listening port for the common

domain. (You could add a second IP address instead of a second port. See the Apache Web

site (http://httpd.apache.org/docs-2.0/vhosts/ip-based.html)for details.

Change the following:

#

# When we also provide SSL we have to listen to the

# standard HTTP port (see above) and to the HTTPS port

#

Listen 443

to the following:

#

# When we also provide SSL we have to listen to the

# standard HTTP port (see above) and to the HTTPS port

#

Listen 443

Listen 444

9 In the same Apache ssl.conf file, modify the following lines that are bolded as shown in the

first virtual host section:

# Server Certificate:

# Point SSLCertificateFile at a PEM encoded certificate. If

# the certificate is encrypted, then you will be prompted for a

# pass phrase. Note that a kill -HUP will prompt again. Keep

# in mind that if you have both an RSA and a DSA certificate you

# can configure both in parallel (to also allow the use of DSA

# ciphers, etc.)

SSLCertificateFile conf/ssl/myssl.crt

#SSLCertificateFile conf/ssl.crt/server-dsa.crt

# Server Private Key:

# If the key is not combined with the certificate, use this

# directive to point at the key file. Keep in mind that if

# you've both a RSA and a DSA private key you can configure

# both in parallel (to also allow the use of DSA ciphers, etc.)

SSLCertificateKeyFile conf/ssl/myssl.key

#SSLCertificateKeyFile conf/ssl.key/server-dsa.key

# Server Certificate Chain:

# Point SSLCertificateChainFile at a file containing the

# concatenation of PEM encoded CA certificates which form the

# certificate chain for the server certificate. Alternatively

# the referenced file can be the same as SSLCertificateFile

# when the CA certificates are directly appended to the server

# certificate for convinience.

SSLCertificateChainFile conf/ssl/trustedroot.crt

#SSLCertificateChainFile conf/ssl.crt/ca.crt

10 If you are using self-signed certificates, the last bolded line above is not needed.