[SAC] https on web vm
christopher.schmidt at nokia.com
christopher.schmidt at nokia.com
Tue May 24 19:41:06 EDT 2011
Hi,
In order to help set up https protected scripts for LDAP activities, I
did the following:
1. a2enmod ssl
2. Added the following to /etc/apache2/sites-enabled/000-default:
<VirtualHost 140.211.15.66:443>
SSLEngine on
ServerName www2.osgeo.org
SSLCipherSuite ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP
SSLCertificateFile /etc/ssl/certs/STAR_osgeo_org.crt
SSLCertificateKeyFile /etc/ssl/private/osgeo.key
SSLCACertificateFile /etc/ssl/certs/COMODOHigh-AssuranceSecureServerCA.crt
ScriptAlias /cgi-bin/ /usr/lib/cgi-bin/
</VirtualHost>
This seems to have enabled URLs like:
https://www2.osgeo.org/cgi-bin/auth/ldap_group.py
to work.
Prior to that, I had done:
$ a2enmod ldap
$ a2enmod authnz_ldap
These allowed for LDAP auth configurations like on the tracsvn server to work correctly.
-- Chris
More information about the Sac
mailing list