That won't actually install the cert(s).
It ONLY gets the cert(s).
So this is expected:
Start your troubleshooting with:
sudo apachectl -S
2 Likes
Thx for the info'. I'm actually attempting this on a different server to the previous stuff I was doing, which I'd kinda used as a trial-run, where I eventually got it all working okay, so I figured it should be fairly straightforward, with the same version of CentOS and the same version of Apache, but guess I'm missing something.
Yeah, I was only trying to get the certs, rather than install them, and I manually added the code-block to the vhost in the same manner as before. Also restarted the server, after I tried a couple of different domains, each time, but same problemo. Curious. I'm just trying to do one domain at a time for now, but seems to make little difference.
1 Like
I bow to Rudy's (@rg305) excellent suggestion. Post the output of that command with three backticks on the lines above and below the output.
1 Like
Okay, well, please excuse the slight obfuscation of unrelated domains in the output, but the one I'm attempting this with is shopviews.com, the information of which I've kept as-is. Other than domain names everything is precisely as output.
Actually, I needed to do "httpd -S" on the CentOS server, as apachectl -S didn't produce anything:
$ sudo httpd -S
VirtualHost configuration:
10.0.0.5:* xyz.com (/etc/httpd/conf/httpd.conf:396)
10.0.0.5:443 xyz.com (/etc/httpd/conf/httpd.conf:428)
51.141.109.36:443 shopviews.com (/etc/httpd/conf/httpd.conf:824)
*:443 dgbvm.internal.cloudapp.net (/etc/httpd/conf.d/ssl.conf:56)
*:80 is a NameVirtualHost
default server xxx.net (/etc/httpd/conf/httpd.conf:464)
port 80 namevhost xxx.net (/etc/httpd/conf/httpd.conf:464)
alias www.xxx.net
alias yyy.com
alias www.yyy.com
alias dpp.com
alias www.dpp.com
port 80 namevhost sbs.co.uk (/etc/httpd/conf/httpd.conf:509)
alias www.sbs.co.uk
port 80 namevhost www.aaa.co.uk (/etc/httpd/conf/httpd.conf:544)
alias aaa.co.uk
port 80 namevhost www.bbb.us (/etc/httpd/conf/httpd.conf:574)
alias bbb.us
port 80 namevhost www.shopviews.com (/etc/httpd/conf/httpd.conf:796)
alias shopviews.com
ServerRoot: "/etc/httpd"
Main DocumentRoot: "/var/www/html"
Main ErrorLog: "/etc/httpd/logs/error_log"
Mutex proxy-balancer-shm: using_defaults
Mutex rewrite-map: using_defaults
Mutex authdigest-client: using_defaults
Mutex ssl-stapling: using_defaults
Mutex proxy: using_defaults
Mutex authn-socache: using_defaults
Mutex ssl-cache: using_defaults
Mutex default: dir="/run/httpd/" mechanism=default
Mutex mpm-accept: using_defaults
Mutex authdigest-opaque: using_defaults
PidFile: "/run/httpd/httpd.pid"
Define: _RH_HAS_HTTPPROTOCOLOPTIONS
Define: DUMP_VHOSTS
Define: DUMP_RUN_CFG
Define: MODSEC_2.5
Define: MODSEC_2.9
User: name="apache" id=48
Group: name="apache" id=48
I've tried using a vhost both as (a) and then as (b) below, but same result with each.
<VirtualHost 51.141.109.36:443>
ServerName shopviews.com
ServerAlias www.shopviews.com
...
</VirtualHost>
<VirtualHost *:443>
ServerName shopviews.com
ServerAlias www.shopviews.com
...
</VirtualHost>
FYI, note that the 10.0.0.5 IP address is mapped to a secondary public IP address, and is separate to all the others. That is, all the other domains listed share a completely different IP (as given). (and, as already noted, the domain with the GoDaddy cert, xyz.com, works fine).
Thank you in advance for any help in the right direction.
2 Likes
How is this working?
10.0.0.5:* xyz.com (/etc/httpd/conf/httpd.conf:396)
Are you really trying to bind httpd to every single port on that IP?
This will only bind if this address is actual on the local system:
51.141.109.36:443 shopviews.com (/etc/httpd/conf/httpd.conf:824)
Please show:
sudo ifconfig | grep -Ei 'add|inet'
Please show the server block that contains: /etc/httpd/conf/httpd.conf:796
2 Likes
Okay, got it working. Thx.
3 Likes
This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.