Apache httpd : SSL/TLS Setting2024/01/30 |
|
Configure SSL/TLS setting to use secure encrypt HTTPS connection. |
|
| [1] | |
| [2] | Enable SSL/TLS settings. |
|
root@www:~ #
vi /usr/local/etc/apache24/httpd.conf # line 92 : uncomment LoadModule socache_shmcb_module libexec/apache24/mod_socache_shmcb.so # line 148 : uncomment LoadModule ssl_module libexec/apache24/mod_ssl.so # line 526 : uncomment Include etc/apache24/extra/httpd-ssl.conf
root@www:~ #
vi /usr/local/etc/apache24/extra/httpd-ssl.conf # line 125, 126 : change to your server name and admin email DocumentRoot "/usr/local/www/apache24/data" ServerName www.srv.world:443 ServerAdmin root@srv.world ErrorLog "/var/log/httpd-error.log" TransferLog "/var/log/httpd-access.log" # line 144 : change to the certificate you got in [1] SSLCertificateFile "/usr/local/etc/letsencrypt/live/www.srv.world/cert.pem"
# line 154 : change to the certificate you got in [1] SSLCertificateKeyFile "/usr/local/etc/letsencrypt/live/www.srv.world/privkey.pem"
# line 165 : uncomment and change to the certificate you got in [1] SSLCertificateChainFile "/usr/local/etc/letsencrypt/live/www.srv.world/chain.pem"
service apache24 reload |
| [3] | If you'd like to set HTTP connection to redirect to HTTPS (Always on SSL/TLS), Set RewriteRule to each Host settings. For example, if you set Virtual Hostings like the link here, Add RewriteRule like follows. Or It's possible to set RewriteRule in [.htaccess] not in [httpd.conf]. |
|
root@www:~ #
vi /usr/local/etc/apache24/httpd.conf # line 181 : uncomment LoadModule rewrite_module libexec/apache24/mod_rewrite.so
root@www:~ #
vi /usr/local/etc/apache24/Includes/vhost.conf
<VirtualHost *:80>
DocumentRoot /usr/local/www/apache24/data
ServerName www.srv.world
# add RewriteRule
RewriteEngine On
RewriteCond %{HTTPS} off
RewriteRule ^(.*)$ https://%{HTTP_HOST}%{REQUEST_URI} [R=301,L]
</VirtualHost>
root@www:~ # service apache24 reload |
| [4] | Verify to access to the test page from any client computer with Web browser via HTTPS. |
|
Matched Content