ML
    • Recent
    • Categories
    • Tags
    • Popular
    • Users
    • Groups
    • Register
    • Login

    Using SSL Wildcard Cert on Apache

    IT Discussion
    8
    22
    1.1k
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • M
      mattbagan @JaredBusch
      last edited by

      @JaredBusch said in Using SSL Wildcard Cert on Apache:

      @mattbagan said in Using SSL Wildcard Cert on Apache:

      @JaredBusch said in Using SSL Wildcard Cert on Apache:

      For basic SSL you need only a couple things in your vhost file.

      The vhost file goes in /etc/httpd/conf.d/

      <VirtualHost *:443>
    DocumentRoot /var/www/html/nextcloud
    ServerName www.yourdomain.com
        SSLEngine on
        SSLCertificateFile /path/to/your_domain_name.crt
        SSLCertificateKeyFile /path/to/your_private.key
        SSLCertificateChainFile /path/to/you_ca_chain.crt
</VirtualHost>

      Would I combine the new information with the existing nextcloud conf?

      You should. It doens't technically matter, but for organization, I would keep things in one file.

      It is simply a second VirtualHost block.

      After looking at my conf, I only have one virtualhost block. That config layout for sure doesn't work.

      <VirtualHost *:443>
    DocumentRoot /var/www/html/nextcloud
    ServerName www.cloud.example.com
        SSLEngine on
        SSLCertificateFile /etc/pki/tls/certs/
        your_domain_name.crt
        SSLCertificateKeyFile /etc/pki/tls/certs
        /your_private.key
        SSLCertificateChainFile /etc/pki/tls/certs
        /you_ca_chain.crt
</VirtualHost>

Alias /nextcloud "/var/www/html/nextcloud/"
<Directory "/var/www/html/nextcloud">
  Options +FollowSymLinks
  AllowOverride All

  <IfModule mod_dav.c>
        Dav off
  </IfModule>

  SetEnv HOME /var/www/html/nextcloud
  SetEnv HTTP_HOME /var/www/html/nextcloud
</Directory>

<Directory "/var/www/nextcloud/data/">
  # just in case if .htaccess gets disabled
    Require all denied
</Directory>
      1 Reply Last reply Reply Quote 0
      • wirestyle22W
        wirestyle22 @Alex Sage
        last edited by

        @aaronstuder said in Using SSL Wildcard Cert on Apache:

        @JaredBusch said in Using SSL Wildcard Cert on Apache:

        Along this line, if you setup LE with certbot and then setup a timer to renew it daily, you will never see this again.
        If you use your wildcard cert, you will have to update it again when it expires.
        But, that said, setting up SSL on Apache is not all that hard. Let me look for an example.

        certbot renews wildcards as well using a DNS plugin.

        https://certbot.eff.org/docs/using.html#dns-plugins

        You don't always have to setup a timer, Ubuntu for example automatically sets up a cron job when the package is installed.

        cron is being phased out

        1 Reply Last reply Reply Quote -1
        • 1
        • 2
        • 2 / 2
        • First post
          Last post