Hi Sonia, It is what Michael says it is but you need to create a SAN certificate to satisfy Chromium based browsers. To do that just follow the steps you see below.
# I'm assuming you have installed Apache in C:\Apache24 if that's not where you installed it you need to change the path to match yours for openssl.exe, the certificate and it's key file you might also want to change the domain names and the IP. # If you need to tell openssl where to find it's configuration file. 1) dir /s \openssl.c* 2) set "OPENSSL_CONF=C:\Apache24\conf\openssl.cnf" 3) C:\Apache24\bin\openssl.exe req -x509 -nodes -days 3650 -newkey rsa:4096 -sha256 -keyout "C:/Apache24/conf/ssl/server.key" -out "C:/Apache24/conf/ssl/server.crt" -subj "/CN=myspace.xyz" -addext "subjectAltName=DNS:myspace.xyz,DNS:www.myspace.xyz,IP:10.0.0.10" Good luck On Thursday, November 17, 2022 at 10:12:57 PM UTC+3 Sonia R Thompson wrote: > Hello Michael, > > Thanks for the info. I successfully removed the passphrase on the > server.key file and Apache2 successfully started. > > However, when I enabled "RequestHeader set X-Forwarded-Proto https" and > tried to restart Apache2, it won't start now. I checked the error.log and > I am getting the following error. > > [Thu Nov 17 14:16:28.372521 2022] [ssl:warn] [pid 4220:tid 480] AH01909: > servername:443:0 server certificate does NOT include an ID which matches > the server name > [Thu Nov 17 14:16:28.872536 2022] [ssl:warn] [pid 4220:tid 480] AH01873: > Init: Session Cache is not configured [hint: SSLSessionCache] > [Thu Nov 17 14:16:28.872536 2022] [ssl:warn] [pid 4220:tid 480] AH01909: > servername :443:0 server certificate does NOT include an ID which matches > the server name > [Thu Nov 17 14:16:28.872536 2022] [mpm_winnt:notice] [pid 4220:tid 480] > AH00455: Apache/2.4.54 (Win64) OpenSSL/1.1.1p configured -- resuming normal > operations > [Thu Nov 17 14:16:28.872536 2022] [mpm_winnt:notice] [pid 4220:tid 480] > AH00456: Apache Lounge VS16 Server built: Jun 22 2022 09:58:15 > [Thu Nov 17 14:16:28.872536 2022] [core:notice] [pid 4220:tid 480] > AH00094: Command line: 'C:\\Apache24\\bin\\httpd.exe -d C:/Apache24' > [Thu Nov 17 14:16:30.388192 2022] [mpm_winnt:notice] [pid 4220:tid 480] > AH00418: Parent: Created child process 916 > [Thu Nov 17 14:16:31.125950 2022] [ssl:warn] [pid 916:tid 496] AH01909: > servername :443:0 server certificate does NOT include an ID which matches > the server name > [Thu Nov 17 14:16:31.500953 2022] [ssl:warn] [pid 916:tid 496] AH01873: > Init: Session Cache is not configured [hint: SSLSessionCache] > [Thu Nov 17 14:16:31.500953 2022] [ssl:warn] [pid 916:tid 496] AH01909: > servername :443:0 server certificate does NOT include an ID which matches > the server name > [Thu Nov 17 14:16:31.500953 2022] [mpm_winnt:notice] [pid 916:tid 496] > AH00354: Child: Starting 64 worker threads. > [Thu Nov 17 14:19:00.488578 2022] [mpm_winnt:notice] [pid 4220:tid 480] > AH00422: Parent: Received shutdown signal -- Shutting down the server. > [Thu Nov 17 14:19:30.745334 2022] [mpm_winnt:notice] [pid 4220:tid 480] > AH00431: Parent: Forcing termination of child process 916 > > Tried searching for the resolution without success. I am wondering if I > have to redo the server.crt. > > Any ideas? > > Sonia > > On Thursday, November 17, 2022 at 1:27:03 PM UTC-4 Michael Plate wrote: > >> Hi, >> >> Am 17.11.22 um 18:16 schrieb Sonia R Thompson: >> > SSLPassPhraseDialog builtin is not supported on Win32 >> […] >> >> I assume your key is protected by a password, >> maybe this helps: >> >> >> https://bobcares.com/blog/sslpassphrasedialog-builtin-is-not-supported-on-win32-how-we-fix-this-error/ >> >> >> and I have the "RequestHeader set X-Forwarded-Proto https" enabled. >> >> CU >> >> Michael >> > -- All messages to this mailing list should adhere to the Code of Conduct: https://www.lyrasis.org/about/Pages/Code-of-Conduct.aspx --- You received this message because you are subscribed to the Google Groups "DSpace Technical Support" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/dspace-tech/f1683f61-c7db-4799-9db7-5b538a804f64n%40googlegroups.com.
