SSL = no SWA
Posted: Wed Dec 12, 2007 12:16 am
For the last two days I have been reading any and every thread on this forum to do with SSL, but for the life of me I cannot get it to work the way it should.
I can access https://my.domain.com/ but not https://my.domain.com/webmail
I can also access http://my.domain.com/webmail
I can get it working by following this thread: viewtopic.php?t=8279&highlight=https
Edit the following files:
/etc/opt/scalix-tomcat/connector/ajp/instance-<host>.conf
/etc/opt/scalix-tomcat/connector/jk/instance-<host>.conf
Put the following into both files:
<VirtualHost *:443>
SSLEngine on
SSLCipherSuite ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP
SSLCertificateFile /etc/pki/tls/certs/localhost.crt
SSLCertificateKeyFile /etc/pki/tls/private/localhost.key
Include /etc/opt/scalix-tomcat/connector/<conn>/app-<host>.*.conf
</VirtualHost>
Edit /etc/httpd/conf.d/ssl.conf
Find the entry that reads <VirtualHost _default_:443> - comment it and everything beneath it out.
Restart services and it all works.
I'm not really happy with this solution as I don't believe the virtualhost section of the ssl.conf file needs to be commented out. The information that is being commented out is being added to the connector config files anyway.
Is this really what has to be done, or have I been doing something wrong?
I can access https://my.domain.com/ but not https://my.domain.com/webmail
I can also access http://my.domain.com/webmail
I can get it working by following this thread: viewtopic.php?t=8279&highlight=https
Edit the following files:
/etc/opt/scalix-tomcat/connector/ajp/instance-<host>.conf
/etc/opt/scalix-tomcat/connector/jk/instance-<host>.conf
Put the following into both files:
<VirtualHost *:443>
SSLEngine on
SSLCipherSuite ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP
SSLCertificateFile /etc/pki/tls/certs/localhost.crt
SSLCertificateKeyFile /etc/pki/tls/private/localhost.key
Include /etc/opt/scalix-tomcat/connector/<conn>/app-<host>.*.conf
</VirtualHost>
Edit /etc/httpd/conf.d/ssl.conf
Find the entry that reads <VirtualHost _default_:443> - comment it and everything beneath it out.
Restart services and it all works.
I'm not really happy with this solution as I don't believe the virtualhost section of the ssl.conf file needs to be commented out. The information that is being commented out is being added to the connector config files anyway.
Is this really what has to be done, or have I been doing something wrong?
