Expand my Community achievements bar.

SOLVED

Dispatcher SSL configuration on Linux

Avatar

Level 2
Level 2
10/15/15 7:27:56 PM

Experts,
The SSL configuration instructions for dispatcher are not working and there must be something missing or incorrect.
Please help!
--------------------------------
Situation:
Dispatcher was configured and tested on port:80 - works fine. Now switching to SSL:

1) Downloaded dispatcher that supports SSL (dispatcher-apache2.4-linux-x86-64-ssl10-4.1.9.tar)

2) Replaced the dispatcher library and re-link the mod_dispatcher.so to point to the new dispatcher library

3) Linux OpenSSL is version 1.0 -> Relinked to older version to support dispatcher:

“ln -s libssl.so.10 libssl.so.0.9.8” and “ln -s libcrypto.so.10 libcrypto.so.0.9.8”

4) Generated self-signed certs <myserver>.crt and <myserver>.key

5) Updated httpd.conf:

Listen 443

<VirtualHost <myserver>:443>
  ServerName  <myserver>
  DocumentRoot /usr/share/httpd
  <Directory /usr/share/httpd>
    <IfModule disp_apache2.c>
      SetHandler dispatcher-handler
    </IfModule>
    AllowOverride None
  </Directory>
  SSLEngine on
  SSLCertificateFile /etc/httpd/ssl/<myserver>.crt
  SSLCertificateKeyFile /etc/httpd/ssl/<myserver>.key
</VirtualHost>

6) Error on restarting apache:

"Invalid command 'SSLEngine', perhaps misspelled or defined by a module not included in the server configuration"
---------------------------------------------------------------------------------
It seems like we need to load apache ssl module in addition to dispatcher ssl module, right?
Is "LoadModule ssl_module modules/mod_ssl.so" required?
Does anyone run Dispatcher on SSL on Linux? Can you share your httpd.conf settings?
Thanks a lot!

Views

3.5K

Replies

8
Sign in to like this content

Total Likes

Translate
Translate
1 Accepted Solution

Avatar

Correct answer by
Level 8
Level 8
10/15/15 7:27:56 PM

Hi, are the tweaks that you mentioned not documented here?  http://docs.adobe.com/docs/en/dispatcher/disp-ssl.html

If not, if you tell me what you did I can see about adding the information to that page.

 

thanks,
scott

View solution in original post

Views

2.6K

Replies

1
Sign in to like this content

Total Likes

Translate
Translate
Jump to reply
8 Replies

Avatar

Level 10
Level 10
10/15/15 7:27:56 PM
If docs are not working; please file a ticket. A support agent will help here.      

Views

2.2K

Replies

0
Sign in to like this content

Total Likes

Translate
Translate

Avatar

Employee Advisor
Employee Advisor
10/15/15 7:27:56 PM

Hi,

It's likely that you don't have the SSL module loaded. Please add this statement to your httpd.conf:

LoadModule ssl_module modules/mod_ssl.so

kind regards,
Jörg

Views

2.2K

Replies

0
Sign in to like this content

Total Likes

Translate
Translate

Avatar

Level 10
Level 10
10/15/15 7:27:56 PM
  On Monday  I will reach out to internal Adobe people to see if anyone has encountered  this.   

Views

2.2K

Replies

0
Sign in to like this content

Total Likes

Translate
Translate

Avatar

Level 2
Level 2
10/15/15 7:27:56 PM

Well, I was hoping someone has Dispatcher-6.1 working on SSL on Linux. A httpd.conf sample would help!
PS: Dispatcher's README.txt is dated 2013! :-)

Views

2.2K

Replies

0
Sign in to like this content

Total Likes

Translate
Translate

Avatar

Level 2
Level 2
10/15/15 7:27:56 PM

Thanks! It seems like the "mod_ssl.so" is implicitly loaded by "mod_dispatcher.so" and no explicit directive is required.
Just make sure "mod_ssl.so" is in the modules directory. I got it working with a few tweaks.
It seems like the dispatcher documentation needs to be updated with more details about the SSL configuration.
Thanks, Alex

Views

2.2K

Replies

0
Sign in to like this content

Total Likes

Translate
Translate

Avatar

Correct answer by
Level 8
Level 8
10/15/15 7:27:56 PM

Hi, are the tweaks that you mentioned not documented here?  http://docs.adobe.com/docs/en/dispatcher/disp-ssl.html

If not, if you tell me what you did I can see about adding the information to that page.

 

thanks,
scott

Views

2.6K

Replies

1
Sign in to like this content

Total Likes

Translate
Translate
Jump to reply

Avatar

Level 4
Level 4
3/9/16 10:09:07 PM

Hey Alex & Jörg

I have got ssl module loaded... ( Refere messages below) still I get the error - libssl.so.10: cannot open shared object file: No such file or directory


[Thu Mar 10 09:01:24.043065 2016] [ssl:debug] [pid 14833:tid 139951116785536] ssl_engine_init.c(893): AH02236: Configuring RSA server private key

[Thu Mar 10 09:01:24.043150 2016] [ssl:info] [pid 14833:tid 139951116785536] AH01876: mod_ssl/2.4.7 compiled against Server: Apache/2.4.7, Library: OpenSSL/1.0.1f [Thu Mar 10 09:01:24.043567 2016] [mpm_event:notice] [pid 14833:tid 139951116785536] AH00489: Apache/2.4.7 (Ubuntu) OpenSSL/1.0.1f configured -- resuming normal operations [Thu Mar 10 09:01:24.043587 2016] [mpm_event:info] [pid 14833:tid 139951116785536] AH00490: Server built: Jan 14 2016 17:45:23 [Thu Mar 10 09:01:24.043602 2016] [core:notice] [pid 14833:tid 139951116785536] AH00094: Command line: '/usr/sbin/apache2'

 

I am using

Linux - Ubunt 14 X64 , [Linux ubuntu 4.2.0-27-generic #32~14.04.1-Ubuntu SMP Fri Jan 22 15:32:26 UTC 2016 x86_64 x86_64 x86_64 GNU/Linux]

Dispatcher version - dispatcher-apache2.4-linux-x86-64-ssl10-4.1.12/

Any pointer what could be causing this.

/Regards
Kanwal

Views

2.6K

Replies

0
Sign in to like this content

Total Likes

Translate
Translate