.
-Original Message-
From: u2-users-boun...@listserver.u2ug.org [mailto:
u2-users-boun...@listserver.u2ug.org] On Behalf Of Kevin King
Sent: Thursday, 21 February 2013 8:35 AM
To: U2 Users List
Subject: Re: [U2] AIX 5.3 IBMIHS Web Server
Where does one get this magical GUI? I wonder, John
...@listserver.u2ug.org] On Behalf Of Kevin King
Sent: Tuesday, February 19, 2013 6:23 PM
To: U2 Users List
Subject: Re: [U2] AIX 5.3 IBMIHS Web Server
I tried checking for a default certificate and it reports null. The
KDB file has the GSK certs and my cert - that's it, and when I follow
] On Behalf Of Kevin King
Sent: Tuesday, February 19, 2013 6:23 PM
To: U2 Users List
Subject: Re: [U2] AIX 5.3 IBMIHS Web Server
I tried checking for a default certificate and it reports null. The
KDB file has the GSK certs and my cert - that's it, and when I follow
the instructions to set up my cert
=swg21179559
HTH.
Regards,
Brian.
-Original Message-
From: u2-users-boun...@listserver.u2ug.org
[mailto:u2-users-boun...@listserver.u2ug.org] On Behalf Of Kevin King
Sent: Thursday, 21 February 2013 8:35 AM
To: U2 Users List
Subject: Re: [U2] AIX 5.3 IBMIHS Web Server
Where does one get
...@listserver.u2ug.org] On Behalf Of Kevin King
Sent: Tuesday, February 19, 2013 6:23 PM
To: U2 Users List
Subject: Re: [U2] AIX 5.3 IBMIHS Web Server
I tried checking for a default certificate and it reports null. The
KDB file has the GSK certs and my cert - that's it, and when I follow
I believe on the open source config I posted, it was a signed certificate.
But you can get them for free here.
http://www.startssl.com/
On Mon, Feb 18, 2013 at 8:04 PM, Kevin King ke...@precisonline.com wrote:
John (Thompson)... This IHS Apache is definitely a cracked Apache with some
odd
-Original Message-
From: u2-users-boun...@listserver.u2ug.org
[mailto:u2-users-boun...@listserver.u2ug.org] On Behalf Of Kevin King
Sent: Monday, February 18, 2013 5:04 PM
To: U2 Users List
Subject: Re: [U2] AIX 5.3 IBMIHS Web Server
John (Thompson)... This IHS Apache is definitely a cracked Apache
...@listserver.u2ug.org
[mailto:u2-users-boun...@listserver.u2ug.org] On Behalf Of Kevin King
Sent: Monday, February 18, 2013 5:04 PM
To: U2 Users List
Subject: Re: [U2] AIX 5.3 IBMIHS Web Server
John (Thompson)... This IHS Apache is definitely a cracked Apache with
some odd configuration SSL setup
...@listserver.u2ug.org
[mailto:u2-users-boun...@listserver.u2ug.org] On Behalf Of Kevin King
Sent: Monday, February 18, 2013 5:04 PM
To: U2 Users List
Subject: Re: [U2] AIX 5.3 IBMIHS Web Server
John (Thompson)... This IHS Apache is definitely a cracked Apache with
some odd configuration SSL setup
-users-boun...@listserver.u2ug.org] On Behalf Of Kevin King
Sent: Tuesday, February 19, 2013 4:03 PM
To: U2 Users List
Subject: Re: [U2] AIX 5.3 IBMIHS Web Server
Yes, I have both the LoadModule and Listen, though my Listen is
unqualified, like this:
Listen 443
The error I'm getting in the logs
February 2013 10:03
To: U2 Users List
Subject: Re: [U2] AIX 5.3 IBMIHS Web Server
Yes, I have both the LoadModule and Listen, though my Listen is unqualified,
like this:
Listen 443
The error I'm getting in the logs tells me there is no key for api or
api.client.com (I've tried both) despite
[mailto:
u2-users-boun...@listserver.u2ug.org] On Behalf Of Kevin King
Sent: Wednesday, 20 February 2013 10:03
To: U2 Users List
Subject: Re: [U2] AIX 5.3 IBMIHS Web Server
Yes, I have both the LoadModule and Listen, though my Listen is
unqualified, like this:
Listen 443
The error I'm getting
So I'm guessing you aren't using the open source version of apache, but,
the IBM AIX flavor of it.
Which I'm guessing is IHS.
I've never worked with that before.
Does the customer have IBM support? Maybe they have some guru that can
send you an example?
I have some notes on this on Linux.
Here
Also I remember having to have three parts with openssl on Linux.
SSLCertificateFile/etc/apache2/ssl/basinc.biz.crt
SSLCertificateKeyFile /etc/apache2/ssl/basinc.biz.key
Then I remember having to merge two files together to create the chain file
(just using a basic unix cat command I
Of course, if the customer doesn't have IBM support, then you might want to
try the open source stuff on AIX.
You can find a lot of good pre-compiled' packages here (they plug right
into the AIX package manager)
http://pware.hvcc.edu/
They claim that their AIX 6 stuff works on 7
The two might be able to behave together... although I'm not a 100%
positive (so don't quote me on that).
I know the pware packages go to great lengths to install themselves off in
a separate space so as not to clobber any IBM specific software.
http://pware.hvcc.edu/documentation.html
Sorry for
It sounds like you've done all you need to for basic IHS SSL
functionality. As long as api.client.com matches the name you gave the
certificate via ikeyman, and you have the KeyFile directive, you should
be OK. There are a lot of other options you can add for optimization
and browser
John (Thompson)... This IHS Apache is definitely a cracked Apache with some
odd configuration SSL setup in particular is completely different.
John (Hester), I can see the cert in the key file (through the gsk7cmd
command) but with the name api.client.com it cannot be found. I even
recreated
18 matches
Mail list logo
