The Shibboleth V1 software has reached its End of Life and is no longer supported. This documentation is available for historical purposes only.

EnableApache22SSL

Owned by ndk@internet2.edu
Last updated: Sept 21, 2007Version comment
1 min read

To enable SSL support in a clean installation of Apache 2.2, please follow these steps:

1. Find and uncomment (i.e. remove the leading '#' char) in your httpd.conf:

LoadModule ssl_module modules/mod_ssl.so    # usually at line 114 with Apache 2.2.4
Include conf/extra/httpd-ssl.conf           # usually at line 475

2. Generate an SSL key for your server, which is accomplished by the following steps (example for the windows environment):

set baseapache=__your_apache22_installation_folder__      ;REM(e.g.: C:\WebServer\shibbolet\Apache2.2)
set OPENSSL_CONF=%baseapache%\conf\openssl.cnf

cd /d %baseapache%\bin

openssl req -new -newkey rsa:1024 -days 365 -nodes -x509 -keyout server.key -out server.crt

copy *.crt %baseapache%\conf
copy *.key %baseapache%\conf

On the 'openssl ..' step you will be asked some information; remember that the CN you enter must be exactly the same as the host name.