Enable Apache's mod_ssl module. Open Apache's main configuration file,
<ifs_home>\apache2\conf\httpd.conf,
in a text editor. Locate the line #LoadModule ssl_module modules/mod_ssl.so and uncomment it by removing the hash mark
(#) in the beginning of the line.
Create a new text file in the Apache conf-folder named httpd_<instance_name>_ssl.conf. The contents for the file is:
On Windows
SSLEngine on SSLCipherSuite TLSv1:!MD5:!RC4:!DES:!ADH:!NULL:+AES256 SSLCertificateFile C:\ifs\instance\prod1\ssl\server.crt SSLCertificateKeyFile C:\ifs\instance\prod1\ssl\server.key SetEnvIf User-Agent ".*MSIE.*" \ nokeepalive ssl-unclean-shutdown \ downgrade-1.0 force-response-1.0 CustomLog logs/ssl_request.log \ "%t %h %{SSL_PROTOCOL}x %{SSL_CIPHER}x \"%r\" %b"
On Unix
SSLEngine on SSLCipherSuite TLSv1:!MD5:!RC4:!DES:!ADH:!NULL:+AES256 SSLCertificateFile /opt/ifs/instance/prod1/ssl/server.crt SSLCertificateKeyFile /opt/ifs/instance/prod1/ssl/server.key SetEnvIf User-Agent ".*MSIE.*" \ nokeepalive ssl-unclean-shutdown \ downgrade-1.0 force-response-1.0 CustomLog logs/ssl_request_log \ "%t %h %{SSL_PROTOCOL}x %{SSL_CIPHER}x \"%r\" %b"
You need to adjust the SSLCertificateFile and SSLCertificateKeyFile parameters' values above to match your installation.
The server certificate file (.crt) and the server private key file (.key) needs to be accessible by the Apache web server. For example, name them server.crt and server.key and put them in a folder ssl in your instance (<ifs_home>\instance\<instance_name>\ssl).
Restart the Apache web server
|
|
Start Apache from a command window and check that no errors are reported by Apache. |
|
|
Point a web browser towards the address of your installation and make sure that the initial page load okay. |