Error Unable To Configure Verify Locations For Client Authentication
Contents |
Start here for a quick overview of the site Help Center Detailed answers to any questions you might have Meta Discuss the workings and policies of this site About Us Learn more about Stack Overflow the company Business apache 2.4 unable to configure verify locations for client authentication Learn more about hiring developers or posting ads with us Server Fault Questions Tags Users
Server Should Be Ssl-aware But Has No Certificate Configured [hint: Sslcertificatefile] ((null):0)
Badges Unanswered Ask Question _ Server Fault is a question and answer site for system and network administrators. Join them; it only fatal error initialising mod_ssl, exiting. takes a minute: Sign up Here's how it works: Anybody can ask a question Anybody can answer The best answers are voted up and rise to the top error Unable to configure verify locations for client authentication up
Sslcacertificatefile
vote 0 down vote favorite Starting my apache2 Server on Ubuntu 12.04.5 LTS, I got the following error [error] Unable to configure verify locations for client authentication my Problem, on the server are more than one Client. so the question would be how to find out which client cert is doing a problem? As described on the Internet I excluded (on some client) the file calling up the cert but then the Apache2 Server said no unable to configure rsa server private key valid cert and cert are needed. at least would be nice if apache would start, also without cert. ;-) have a nice day Vinc certificate share|improve this question asked Jan 21 '15 at 6:48 syswombat 61 any idea where to look? –syswombat Jan 26 '15 at 11:51 any idea how to solve this problem? –syswombat Jan 28 '15 at 21:40 add a comment| 1 Answer 1 active oldest votes up vote 0 down vote Check your certs are in .pem format (which is ASCII text) not .der format (which is binary). I mean actually open them and look at them, don't just look at the extensions. The error you mention most often has to do with the SSLCertificateChainFile or the SSLCACertificateFile being unable to be read and parsed. Source: http://docstore.mik.ua/orelly/weblinux2/apache/ch11_10.htm share|improve this answer answered Oct 16 '15 at 14:37 Philippe Chaintreuil 165 add a comment| Your Answer draft saved draft discarded Sign up or log in Sign up using Google Sign up using Facebook Sign up using Email and Password Post as a guest Name Email Post as a guest Name Email discard By posting your answer, you agree to the privacy policy and terms of service. Not the answer you're looking for? Browse other questions tagged certificate or ask your own question. asked 1 year ago viewed 2000 tim
4 messages Bill Moseley Reply | Threaded Open this post in threaded view ♦ ♦ | Report Content as Inappropriate ♦ ♦ "Unable to configure verify
Sslcertificatechainfile
locations for client authentication" I am not trying to set up client
Apache Ssl
auth on Apache, just install a new SSL certificate.The instructions[1] for the new certificate says to install and intermediate certificate:SSLCACertificateFile /usr/local/ssl/crt/intermediate.crt I've done that, confirmed the paths and the certificate, but apache reports: [error] Unable to configure verify locations for client authenticationIf I comment out that directive in http://serverfault.com/questions/661137/error-unable-to-configure-verify-locations-for-client-authentication httpd.conf the server starts fine and the site works ok for some newer browsers but older browsers (including FF3.6.8) report that the CA is unknown. Searching Google for that error message I find mostly people trying to set up client auth, which I'm not trying to do.For example: http://www.mail-archive.com/modssl-users@.../msg17547.html, but again that user was trying to set up client auth, plus SSLCADNRequestFile http://openssl.6102.n7.nabble.com/quot-Unable-to-configure-verify-locations-for-client-authentication-quot-td28713.html is not a known config setting in my environment. Running an old version of Apache, unfortunately: Apache/2.0.54 (Debian GNU/Linux) mod_ssl/2.0.54 OpenSSL/0.9.7eAny ideas? Thanks,[1] https://knowledge.geotrust.com/support/knowledge-base/index?page=content&id=SO15167 -- Bill Moseley[hidden email] Kyle Hamilton Reply | Threaded Open this post in threaded view ♦ ♦ | Report Content as Inappropriate ♦ ♦ Re: "Unable to configure verify locations for client authentication" You're looking at a couple of issues here. (First, please be aware that this is the OpenSSL users list, not necessary a mod_ssl support list; however, since they're intertwined, we do have some knowledge of mod_ssl.) What you need to do is change that from 'SSLCACertificateFile' to 'SSLCACertificateChainFile'. The documentation on SSLCACertificateChainFile: This directive sets the optional all-in-one file where you can assemble the certificates of Certification Authorities (CA) which form the certificate chain of the server certificate. This starts with the issuing CA certificate of of the server certificate and can range up to the root CA certificate. Such a file is simply the concatenation of the various PEM-encoded CA Certificate files, usually in certificate chain order. NOTE: If you d
8.1 Search Apache SSL for Dummies... Ask all your questions regarding OC 8.0 and 8.1 Please read https://forum.owncloud.org/viewtopic.php?t=31646 the Support Forum Rules Forum rules The forums were migrated over to https://central.owncloud.org which is based on the forum software Discourse. The forums here is put into read-only mode starting from today.More background information about this move and the reasoning behind it is available in this blogpost:https://daniel.molkentin.net/2016/07/20 ... d-central/ Locked Print view Search unable to Advanced search 4 posts • Page 1 of 1 friede Newbie Posts: 2 Joined: Tue Nov 17, 2015 5:29 pm ownCloud version: 8.1.3 Webserver: Apache Database: MySQL OS: Linux PHP version: 5.6.14 Apache SSL for Dummies... Quote Postby friede » Sun Nov 22, 2015 12:02 pm Hello world,I am struggeling with Apache for unable to configure a week now...My Owncloud-Server is a virtual Debian 8 running inside VirtualBox on a physical Debian 7 (Openmediavault). Port forwarding and DynDNS are working great but I struggle with the SSL setup. So far I created a pair of private key and CSR, copied that CSR to Godaddy and downloaded the new certificate with the according cert_bundle. I enabled SSL and added the certificate and key paths to the default-ssl.conf in /sites-availabe. Until this point the apache default site was available on port 80. After reloading apache it fails to start and everything is broken. I tried this several times thanks to the snapshot I created before messing with the SSL settings. Could you please help me? I think there is the one thing that I'm missing but can't figure out what it is.Please tell me which further information you need and I will answer immediately.Thank you so much- friedeEdit:sites-enabled folder:Code: Select allroot@Owncloud-Server:/etc/apache2/sites-enabled# ls
000-default.conf default-ssl.conf
default-ssl.conf:Code: