SSL Certificate import for Reverse Proxy to Exchange

rvicker · 02-07-2012, 04:38 PM

I am trying to update a reverse proxy in front of Exchange 2007 OWA to Fedora 14.

The old server worked just fine but it seems F14 will not automatically accept the self signed certificate from the Exchange Server.

I am trying to figure out the right way to import the certificate into Apache so that it will proxy to exchange but use Apache's own self signed certificate for the HTTPS to the internet side.

Does anybody have a step by step howto or link to one?

acid_kewpie · 02-07-2012, 05:25 PM

why are you using fedora 14?? It's out of date and NOT a server distro. Use CentOS if you want a "free" server for the job.

But you want to import the certificate? Why? That's for OWA to serve to Apache as a client, not for Apache to be configured with. Why use SSL on the Serverside at all though? It's totally normal to remove SSL there once it's through apache.

http://systembash.com/content/outloo...-apache-proxy/

rvicker · 02-14-2012, 10:04 AM

I have been running a real ancient Apache on another system that is working perfectly without the imported self signed certificate. The older Apache would accept self signed certs but the newer insists on the chain of trust or local copy to validate the certificate.

If I switch to non-SSL between Exchange and Apache I keep getting bad urls returned to the browser. Such as dropping the "https://".

I've included the *.conf file that I use with http://