Linux - EnterpriseThis forum is for all items relating to using Linux in the Enterprise.
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
I'm currently deploying two new Citrix NFUSE web-interface servers, I have recently made my SSL key on the first server, on the second I'm getting an SSL error while trying to create the key.
When I try to start HTTPD I get the following,
[root@oailxnfw1 conf]# /sbin/service httpd start
When I check the error_log here is what I see.
[Sun Jul 29 23:14:04 2007] [error] Unable to configure RSA server private key
[Sun Jul 29 23:14:04 2007] [error] SSL Library Error: 185073780 error:0B080074:x509 certificate routines:X509_check_private_key:key values mismatch
What does this mean? I've created my key, and self-signed it for testing purposes before I send the cert out to Thawte.
The second Server:
HTTPD fails as well but when I tried to generate my key and csr I get this..
[root@oailxnfw2 httpd]# openssl req -new -key server.key -out server.csr
Error opening Private Key server.key
29150:error:02001002:system library:fopen:No such file or directory:bss_file.c:259:fopen('server.key','r')
29150:error:20074002:BIO routines:FILE_CTRL:system lib:bss_file.c:261:
unable to load Private Key
If anyone can add some sort of insight as to what is going on; I've gotten this far with setting up servlets with mod_jk Apache and Tomcat; I'm pretty close to wrapping this project up, just figures I have such errors.
Thanks again for taking the time to look at my post!
try (substitue XXXXXXXXXXXXX with a password of your choice known to more than just you!)
$ genrsa -des3 -out server.key
Generating RSA private key, 512 bit long modulus
e is 65537 (0x10001)
Enter PEM pass phrase: XXXXXXXXXXXXX
Verifying password - Enter PEM pass phrase: XXXXXXXXXXXXX
This should generate a "server.key" file for you to use in the command that is failing...
That worked a treat, thanks for helping me solve that issue! I'm still having problems with the first machine but now apache won't start on either server. It's pretty strange, I get no verbose messages telling me what's wrong; I see nothing out of the norm in the log files. I've ran into issues before that Apache would fail if there were no log files albeit everything is pointing to the proper log, permissions seem to be set properly as well.
This is a pain in the rear! Thanks again for your help!