[Solved] SSL configuration

webizen

Well-Known Member
#3
SNI is supported by LSWS. You can configure listener with a default SSL cert and put a real cert for the vhost. One IP should be enough.
 

webizen

Well-Known Member
#5
For testing, do not bind vhost to the listener. make sure SSL info such as path to the key and cert is correct and SSL port is not occupied by other service.
 
#6
I have this as my chained cert path

CA Certificate Path: /etc/ssl/certs/
CA Certificate File: xxxx.com.cabundle

but it is giving me this error:

[config:vhost:Admin] Path for CA Certificate file is invalid: /home/xxxxx/public_html/xxxx.com.cabundle
 

webizen

Well-Known Member
#8
Looks like cert isn't loaded. Did you create the chained cert as follows? Make sure lsadm has read permission to the cert directory and file.

Another way is to create a chained certificate, set “Certificate File” to the path of “chained.cert”, “Chained Certificate” should be set to “Yes”. To create the chained certificate, you can concat your certificate file together with the intermediate certificate with a command like:

cat my.cert ca.cert > chained.cert
 
Top