The Apache server provides two authentication methods: common authentication and digest authentication. There are a lot of articles on how to configure Apache common authentication on the Internet, but they are almost all similar
STARTSSL Free Certificate Application step
1. Client Authentication Application
STARTSSL user authentication uses HTTPS client certificate authentication rather than username/password authentication. So the first step is to reques
For a Web site to implement HTTPS secure access, you need to do the following steps:1, the domain name resolver to apply for an SSL certificate, the certificate can be applied for free, after the application, including many Web configuration certificate typeSuch as:2, build Web services, the environment I built here is the lamp environment.3. Upload the SSL
About SSL certificates
SSL certificates are used to encrypt site information and create a safer connection. In addition, the certificate can display the VPs identity information to site visitors. The Certificate Authority issues an SSL certificate to verify detailed information about the server, while a self-signed certific
This afternoon study the certificate installationThe certificates are configured under Apache and Nginx respectively.Record, hoping to help with the installation of the certificate of the children's shoesApacheApply for DV certificate, fill out the application materials, do a domain name txt point, but also soon receiv
Setup Preparation 1. Install openssl to enable Apache to support SSL, you need to install OpenSSL support first. Recommended download install openssl-0.9.8k.tar.gz Download openssl:http://www.openssl.org/source/ TAR-ZXF openssl-0.9.8k.tar.gz //Unzip the installation package NBSP; CD openssl-0.9.8k //into the unpacked installation package ./config //configuration installation. It is recommended to use the default configuration make make
One, Apache installation SSL certificate requires three profiles:
(Warm tip: Please back up the server configuration file you need to modify before installing the certificate)
1_ROOT_BUNDLE.CRT, 2_DOMAINNAME.COM.CRT, 3_ Domainname.com.key.
Note: These three certificate files are in the folder for Apache.zip,Example:
one, Apache installation SSL certificate requires three configuration filesWarm tip: Before installing the certificate, please back up the server configuration file you need to modify1_ROOT_BUNDLE.CRT, 2_DOMAINNAME.COM.CRT, 3_ Domainname.com.key.Note: These three files are in folder for Apache.zip, where domainname.com is your domain name, 2_ DOMAINNAME.COM.CRT i
CSR file in the server when there is a key file is also what we need, this need to find, and then use the site when the deployment of the environment need to use.
Second, the Apache Web site Environment Installation SSL Certificate method
If our web site environment is Apache, then use this method to deploy SSL
One, Apache user authenticationVim/usr/local/apache2.4/conf/extra/httpd-vhosts.confEdit the 111.com virtual host to the following:DocumentRoot "/data/wwwroot/www.111.com"ServerName www.111.comAllowOverride authconfig//This equivalent to open the authentication switchAuthName "111.com user auth"//Custom certified name, not very usefulAuthType Basic//authentication
One, Apache user authenticationThe function is that when users visit a website, they need to enter a user name and password to enter the site. Some important sites or websites are often authenticated by users to ensure security.# vim/usr/local/apache2.4/conf/extra/httpd-vhosts.confDocumentRoot "/data/wwwroot/111.com"ServerName 111.comServeralias www.example.comAllowOverride authconfig//Turn on the certified switchAuthName "111.com user auth"//Custom c
, hostname (domain name) is not www.123.com meet conditionRewriterule ^/(. *) $ http://www.123.com/$1 [r=301,l]//define rewrite rules that are not executed until the above conditions are met/usr/local/apache2/bin/apachectl-m|grep-i rewrite//Without this module, you need to edit the configuration file httpd.conf, delete the front of the Rewrite_module (shared) #Curl-x127.0.0.1:80-i 123.com//Status Code 30111.21 Configuring access LogsAccess log records every request from a uservim/usr/local/apach
11.18 Apache user authenticationEdit the/usr/local/apache2.4/conf/extra/httpd-vhosts.conf and edit the second virtual host to the following:
• Parameter Description://Designation of certified directoriesallowoverride authconfig //This equivalent to open the authentication switch, no line equivalent to not openAuthName "111.com user auth" //Custom certified name, not very usefulAuthType Basic //
11.18 Apache user authentication11.19/11.20 Domain Jumphttpd.conf, delete the # in front of Rewrite_module (shared)Curl-x127.0.0.1:80-i 123.com//Status Code 30111.21 Apache Access LogChange the virtual host configuration file to the following:DocumentRoot "/data/wwwroot/lgx168.com"ServerName lgx168.comServeralias www.lgx168.comCustomlog "Logs/lgx168.com-access_log" combinedReload the configuration file-t,gr
Apache user authentication1. Edit the file[Email protected] ~]# vi/usr/local/apache2.4/conf/extra/httpd-vhosts.conf#打开网页时, let you enter the Apache authenticated username, passwordDocumentRoot "/data/wwwroot/111.com"ServerName 111.comServeralias www.111.com www.example.com#指定认证的目录AllowOverride authconfig#该行相当于打开用户认证的开关AuthName "111.com User auth"#自定义认证的名字AuthType Basic#认证类型, generally basicauthuserfile/data
User authentication for Apachevim/usr/local/apache2.4/conf/extra/httpd-vhosts.conf//The 111.com virtual host is edited into the following contentDocumentRoot "/data/wwwroot/111.com"ServerName 111.comServeralias www.example.comAllowOverride authconfigAuthName "111.com User auth"AuthType Basicauthuserfile/data/.htpasswdRequire Valid-userErrorlog "Logs/111.com-error_log"Customlog "Logs/111.com-access_log" commonApache
Installation certificate file Description: 1. Certificate file 214077101580586.pem, contains two pieces of content, please do not delete any piece of content. 2. If it is a CSR created by the certificate system, it also contains: Certificate private key File 214077101580586.key, ce
The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion;
products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the
content of the page makes you feel confusing, please write us an email, we will handle the problem
within 5 days after receiving your email.
If you find any instances of plagiarism from the community, please send an email to:
info-contact@alibabacloud.com
and provide relevant evidence. A staff member will contact you within 5 working days.