[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: Unable to set a correct SSL access
From: |
Mat38 |
Subject: |
Re: Unable to set a correct SSL access |
Date: |
Wed, 7 Oct 2015 17:22:26 +0200 |
User-agent: |
Mozilla/5.0 (Windows NT 6.1; WOW64; rv:38.0) Gecko/20100101 Thunderbird/38.3.0 |
Hi!
If it can help some noob like me.... The solution is:
cat your_domain_name.key your_domain_name.crt DigiCertCA.pem > monit.pem
The Private Key - your_domain_name.key
The Primary Certificate - your_domain_name.crt
The Intermediate Certificate - DigiCertCA.crt
Make sure to include the beginning and end tags on each certificate. The
result should look like this:
-----BEGIN RSA PRIVATE KEY-----
(Your Private Key: your_domain_name.key)
-----END RSA PRIVATE KEY-----
-----BEGIN CERTIFICATE-----
(Your Primary SSL certificate: your_domain_name.crt)
-----END CERTIFICATE-----
-----BEGIN CERTIFICATE-----
(Your Intermediate certificate: DigiCertCA.crt)
-----END CERTIFICATE-----
It is now working.
Bye.
Save the combined file as your_domain_name.pem. The .pem file is now
ready to use.
Le 03/10/2015 11:49, address@hidden a écrit :
> Add the contents of the key and crt into a new file called monit.pem
> , it is advisable to also generate a 2048bit dhparam and add it to the
> monit.pem
>
> # Generates the Diffie-Hellman Parameters /usr/bin/openssl gendh 2048
> >> /var/certs/monit.pem
>
> Lots of guides and monit info on eXtremeSHOK.com <http://extremeshok.com>
>
> Sent from my iPhone
>
> On 03 Oct 2015, at 10:35 AM, Mat38 <address@hidden
> <mailto:address@hidden>> wrote:
>
>> Hi all,
>>
>> I am currently trying to set monit with SSL ENABLE by using a certified
>> certificat.
>> I know nothing in SSL...
>>
>> My provider give me three files:
>> SSLCertificateFile /etc/ssl/certs/domain.tld.crt
>> SSLCertificateKeyFile /etc/ssl/private/domain.tld.key
>> SSLCertificateChainFile /etc/ssl/certs/GandiXXXSSLCA.pem
>>
>> I use them for Apache configuration and on all my website, it is working
>> well.
>>
>> However, Monit requires a .pem file. I do not know how I can generate it
>> for make Monit work properly in SSL with the following configuration:
>>
>> SET HTTPD PORT 2812 and
>> SSL ENABLE
>> PEMFILE /var/certs/monit.pem
>> allow user:pwd
>>
>> Someone can help me ?
>>
>> Thank you in advance.
>> Regards,
>> Mathias.
>>
>>
>> --
>> To unsubscribe:
>> https://lists.nongnu.org/mailman/listinfo/monit-general
>
>
> --
> To unsubscribe:
> https://lists.nongnu.org/mailman/listinfo/monit-general