I have tried to combine both (http and https), and it is not easy. You
will need to do a lot of customization of your virtual host section in
apache conf.
Finally, I have configured only https in sogo virtual host section and
additionally I have made permanent redirection from http to https, e.g.
*HTTPS part:*
#### begin SOGo.conf ####
NameVirtualHost *:443
<VirtualHost *:443>
SSLEngine on
SSLCertificateFile /etc/pki/tls/certs/ca.crt
SSLCertificateKeyFile /etc/pki/tls/private/ca.key
ServerAdmin [email protected]
ServerNamesogo.example.com
# STANDARD HTTP SOGO CONFIG STARTS HERE
# only these lines changed:
RequestHeader set "x-webobjects-server-port" "443"
RequestHeader set "x-webobjects-server-name" "sogo.example.com"
RequestHeader set "x-webobjects-server-url" "https://sogo.example.com";
# STANDARD HTTP SOGO CONFIG ENDS HERE
</VirtualHost>
*HTTP part (redirection)*:
<VirtualHost *:80>
Servername sogo.example.com
RedirectMatch permanent ^/SOGo https://sogo.example.com/SOGo
</VirtualHost>
In order to generate SSL certificates, you can follow the steps here:
http://wiki.centos.org/HowTos/Https
Regards,
Igor
Sven Arnold wrote on 06/08/2014 17:43:
Hello Samuel,
What is the best way to force people using HTTPS when they come in sogo
site? ( virtual hosts? .htaccess file? )
That depends (of course) on your webserver and setup. If you are using
apache you can perform a simple redirect on requests on port 80
similar to:
<VirtualHost *:80>
RedirectMatch ^/$ https://yourdomain.yourdomain/SOGo
</VirtualHost>
and of course put your SOGo configuration inside of:
<IfModule mod_ssl.c>
<VirtualHost _default_:443>
...
</VirtualHost>
</IfModule>
Is there a way to enable https just for authentification?
Maybe that is possible, but is this useful? I suppose you do not only
want to secure authentication but also email content?
Thanks all!
Samuel
Regards,
Sven
--
[email protected]
https://inverse.ca/sogo/lists
