[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[cobalt-users] VeriSign Global Server ID/Intermediate CA Installation...
- Subject: [cobalt-users] VeriSign Global Server ID/Intermediate CA Installation...
- From: Brian Coughter <brianc@xxxxxxxxxxxxxx>
- Date: Wed Jan 10 12:33:01 2001
- List-id: Mailing list for users to share thoughts on Cobalt products. <cobalt-users.list.cobalt.com>
I figured it out! You guys should save this for future reference. It looks
like I was the first with this problem.
Problem:
128bit-RC4 VeriSign Commerce Site Pro Global Server ID is installed okay but
some browsers can't detect the issuing party (VeriSign), therefore access to
secure files (https://domain.com) is not granted.
Error Message: Unable to establish secure connection.
Certificate authority not recognized.
Solution:
Obtain an Intermediate CA file from VeriSign at:
http://www.verisign.com/support/tlc/class3_install_docs/g/index.html
Obtain it from the RED HAT section.
Copy CA cert: ---BEGIN CERTIFICATE--- to ---END CERTIFICATE--- and paste it
to a text file. Name it "certificate-ca" (no quotes)
FTP text file to /etc/httpd/conf
Telnet to box, then 'su' to root.
open /etc/httpd/conf/httpd.conf in pico.
Uncomment and edit this line to read:
SSLCACertificateFile /etc/httpd/conf/certificate-ca
Exit httpd.conf and save.
Add the same directive to the SSL section of the admin server
restart web server:
/usr/bin/httpd restart
If you have any problems with this. Cobalt should now have this procedure
on file.
Good Luck,
Brian J. Coughter
Internet Services
Blue Water Graphics, Inc.
7977 SW Jack James Drive
Stuart, Florida 34997
561-286-2249 (Tel)
561-286-3055 (Fax)
brianc@xxxxxxxxxxxxxx