[cobalt-users] How to: Replace Qube3 default Cobalt SSL certificate with a legitimate certificate

["Earl" <earl@xxxxxxxxxxxxxxxx>]

With the assistance of Devin of jetdata.ca, my Qube3 now has a valid SSL
certificate...

In case anyone else is trying to do the same, the steps we went through
are below.

Thanks,

Earl

-------------------------------

The following instructions will enable you to replace the default COBALT
SSL certificate on the Qube3 with a legitimate certificate shared
between the admin server and the web server.

You will need to purchase an Apache + MOD SSL certificate, and then
follow the steps below to install it.

1) Telnet into the Qube3, and login to the root using 'su'

2) Modify the /etc/httpd/conf/httpd.conf file as follows:

     Add the following statements, replacing the 192.168.0.0 IP address
with your server's IP:

       Listen 192.168.0.0:443
       Listen 192.168.0.0:80


     If you want Active monitor to be able to 'see' the web services add
the following statements (DO NOT CHANGE THE IP addresses for these
statements):

       Listen 127.0.0.1:80
       Listen 127.0.0.1:443

     At the end of the file, type the following line:

       Include /etc/httpd/conf/ssl.conf

3) Create the /etc/httpd/conf/ssl.conf  file as follows, replacing the
192.168.0.0 IP address with your server's IP

        <VirtualHost 192.168.0.0:443>
        SSLEngine on
        SSLCertificateFile /etc/admserv/certs/certificate
        SSLCertificateKeyFile /etc/admserv/certs/key
        </VirtualHost>
        <VirtualHost 192.168.0.0:80>
        </VirtualHost>

4) Copy your certificate and key files into the /etc/admserv/certs
directory (you might want to backup the originals first).

5) Stop and start the web service:

    /etc/rc.d/init.d/httpd stop

    /etc/rc.d/init.d/httpd start

You now should be able to access your web site through
http://www.mydomain.com and https://www.mydomain.com