Creating Self-Signed Certificates Open SSL Part 2 : Making Apache HTTP Server SSL enabled.

 

In previous post I have explained how to generate self-signed certificates using openSSL. This post We will see how to use this certificate for a secured web application.

Now lets use these certificates to make a web application secure. For this I have downloaded Apache HTTP Server including OpenSSL and installed from here.

1. First step is to make Apache HTTP Server SSL enabled.

Following the simple steps given below to get SSL enabled

  1. Edit <APACHE_INSTALL_HOME>/config/httpd.conf and uncomment following line
    1. LoadModule ssl_module modules/mod_ssl.so
    2. Include conf/extra/httpd-ssl.conf
  2. Edit <APACHE_INSTALL_HOME>/config/extra/httpd-ssl.conf and update following attributes
    1. SSLCertificateKeyFile <Location of Server.key file, generated as per previous post>
    2. SSLCertificateFile <Location of Server.crt file, generated as per previous post>

 

2. Restart the Server

<APACHE_INSTAL_HOME>/bin/httpd.exe –k restart

3. Install/import certificate to browser/client

Now try to access the server using https

https://server-host.com/

You will notice following error in browser

image

It is expected as the certificates which have mentioned in httpd-ssl.conf file are self-signed not by any well-known third party authority. We need to install/import our own certificate to the browser. For the same

go to  Options>>Advanced>>Encryption tab ( I am using Firefox 4 in this example, if you are using any other browser then this location may be little different)

2011-03-19_1613

Click on “View Certificate” and then “Import” option

2011-03-19_1614

Now locate myCA,cert ( which we have generated in previous post).

2011-03-19_1615

Now we have installed our own Certificate Authority to browser, which has already signed the web server certificate (server.cert & server.key mentioned in httpd-ssl.cnf). Now restart the browser and try to access the server with https protocol. You will able to access index page without any exception or warning.

2011-03-19_1646

Comments

Post a Comment

Popular posts from this blog

Composite Design Pattern by example

Image
This post explains Composite design pattern with an example. When to use ? – Use Composite pattern when you have treat a collection of objects as they were once one thing. With Composite design pattern it is very easy to simplify operations over collection data structure. It reduces complexity of the code required if you were going to handle collection as special case. How to Use? - The Composite pattern consist of Component, Leaf and Composite Classes as shown below class diagram Component – Component declares the common interface that both the single and composite nodes will implements Leaf – The leaf class represent the singular atomic data type implementing he component interface.     Composite – Composite is an abstract entity which declares common functionality which are needed by concrete implementation for handling collection data. An Example -   Item.java public interface Item {     public double getPrice(); }   ColdDrink.java pu
Read more

State Design Pattern by Example

Image
State pattern falls under the category of Behavioral patterns. State design pattern comes in picture when a system’s behavior is depends on its own state or some other resource’s state. If an implementation is depends on the states, we end up with snarl of conditional statement every where in code. A very neat approach to deal with such situation is to separate out every state’s behavior and use them where ever they are applicable. The state pattern allows an object to alter its behavior when is internal state changes . The object is appeared to change its class. State pattern is a way to implement the same. Class Diagram : As above class diagram shows, System class holds state instance. As state of system changes , all handle request delegated to respective State’s concrete implementation. Example : Have an example of Vending machine. Vending machine has following states No Coin Inserted Coin Inserted Dispensing Empty Following diagram explain behavior
Read more

Eclipse command framework core expression: Property tester

Image
Addition to Eclipse command framework series, this post explains use of property tester to control command’s enable/visible properties. In earlier post we have tried declarative way to achieve same thing but property tester gives us more control. Property tester is associated with, tester class which implements PropertyTester.java, a namespace and set of property which it supports. We can refer this property tester using its namespace + a property name. It gives you call back to test() method with property name as parameter inside property tester class. We can configure property tester for type of input parameter. Here is sample declaration of property tester extension point < extension point ="org.eclipse.core.expressions.propertyTesters" > < propertyTester class ="com.example.advance.cmd.EditorTester" id ="com.example.advance.cmd.propertyTester1" namespace ="com.example.advance.cm
Read more