https access only breaks sac

[kyiu]

I disabled port 80 access to the server for https only SWA

#<VirtualHost <hostname>:80>
# Include /etc/opt/scalix-tomcat/connector/ajp/app-<servername>.*.conf
#</VirtualHost>
<VirtualHost <hostname>:443>
SSLEngine on
SSLProtocol all -SSLv2
SSLCipherSuite ALL:!ADH:!EXPORT:!SSLv2:RC4+RSA:+HIGH:+MEDIUM:+LOW
SSLCertificateFile /etc/pki/tls/certs/localhost.crt
SSLCertificateKeyFile /etc/pki/tls/private/localhost.key
Include /etc/opt/scalix-tomcat/connector/ajp/app-<servername>.*.conf
</VirtualHost>

Users are accessing SWA on https OK. But the admin mode "https://hostname/sac" is broken.
The server refuse sxadmin to logon. It appears server authenticates on port 80 in the admin mode.
Is there a way to get around this? I want to be able to administrate the server via https.

Ken
~

[ls-al]

Your first statement should be rather. "I have disabled http for all web applications, not just SWA"
If you do this you will have to change *all* references in the configuration to use https. For some webapps this can be done in the corresponding .properties file. You will also have to convince the client-side to use the certificates. This will be a lot of work and you will probably have no luck with client applications that currently dont support https (I am not sure if the Search and Index Service can use https).

You should rather think about to re-enable http and force https for the service where https is a security requirement.
http://www.scalix.com/wiki/index.php?title=HowTos/ScalixSecurity#Force_to_use_https