Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations IamaSherpa on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

SSL: Generating and accepting Machine and Web certfificates

Status
Not open for further replies.
sonuteklists

sonuteklists

Technical User
Jul 20, 2004
233
US
I setup a basic CA and was able generate a request from a client, get it signed from the CA. But now can you anyone kindly advice me,

- How do I accept the signed certficate on the client and
- add the the server to its trusted root authority

Also, how do I do the same for web sites run on Apache/httpd.

Can anyone kindly provide guides, links, info on the above.

Thanks a bunch.
 
Sort by date Sort by votes
Here's a promising link:
linuxquestions.org thread

There were a lot more too. Just google for 'apache ssl howto':
googlized link

I've not done it myself, so I won't paste the contents of a howto here and claim to know what I'm talking about ;-)


----
JBR
 
Upvote 0 Downvote
Thanks for the wonderful link. Will play with them and let know of any issues.
 
Upvote 0 Downvote
The link was very useful, but I am failing to understand the following.
After I got the certrequest signed from the CA, what next. How and where do I import the signed certificate from the CA and where do I put them on the client machine. I guess I have add the CA key to the trusted root CA,
- how do I add the server key to the trusted root CA
- how do I add the signed certicate on the client

For now, what I am trying to do is add the machine certificate. After that I will try to enable ssl on Apache/Httpd.

Kindly excuse me for referring to Windows, but I am just presenting that so that I can explain what I want to do. The Windows was a AD server and I wanted to access AD using LDAPS. So I created a certificate request, sent it to the CA (Redhat, OpenSSL), got it signed from the CA, accepted it on the cient (AD) and added the server CA to the trusted root authority. After that I was able to access AD using LDAPS instead of LDAP.

How would I do the same in redhat, mainly accepting the signed cert on the cient and adding the server CA to the trusted root authority. Also after doing so, would I able to use a service on its secure port (if one was available, lets say sftp) ?? I know to secure apache is another story, but how about securing other common ports like the one I have mentioned above.

The links as I have said before was very very helpful, but I wasnt sure about the above even after reading through the suggested links and info.

Kindly advice.
Thanks a bunch.
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

xwb
  • Locked
  • Question
Equivalent of zenity on HPUX, Solaris and AIX
Replies
0
Views
93
xwb
xwb
Ogi
  • Locked
  • Question
Moving from VB.NET/Windows to Mint Linux and Kdevelop
Replies
4
Views
159
xwb
xwb
bnorton916
  • Locked
  • Question
PowerEdge and CentOS
Replies
0
Views
90
bnorton916
bnorton916
wnissen
  • Locked
  • Question
which USB floppy drive for Ubuntu and Mac OS X 6
Replies
11
Views
231
wnissen
wnissen
diwin
  • Locked
  • Question
find and rename files
Replies
4
Views
152
flyboytim
flyboytim

Part and Inventory Search

Sponsor

Back
Top