Koozali.org: home of the SME Server

Obsolete Releases => SME Server 9.x => Topic started by: bpkheops on October 10, 2015, 11:46:47 AM

Title: yum upgrade and can't access to server-manager.
Post by: bpkheops on October 10, 2015, 11:46:47 AM

Hi,

I have upgraded my sme server 9 with yum upgrade.
But now I can't access to my admin server, I have a ssl protocol error in browser when I use https://x.x.x.x/server-manager/ from the lan (idem with https://nameofserver/server-manager/

I try to regenerate ssl certificate but does not work.
I have the following warn in error_log.
[Sat Oct 10 11:41:15 2015] [warn] RSA server certificate is a CA certificate (BasicConstraints: CA == TRUE !?)
[Sat Oct 10 11:41:15 2015] [warn] RSA server certificate CommonName (CN) `rangiroa.paties.net' does NOT match server name!?
[Sat Oct 10 11:41:15 2015] [warn] RSA server certificate is a CA certificate (BasicConstraints: CA == TRUE !?)
[Sat Oct 10 11:41:15 2015] [warn] RSA server certificate CommonName (CN) `rangiroa.paties.net' does NOT match server name!?
[Sat Oct 10 11:41:15 2015] [warn] Init: Name-based SSL virtual hosts only work for clients with TLS server name indication support (RFC 4366)
[Sat Oct 10 11:41:15 2015] [notice] Apache/2.2.15 (Unix) mod_ssl/2.2.15 OpenSSL/1.0.1e-fips configured -- resuming normal operations


I try to recreate all ssl certificate by following http://wiki.contribs.org/Certificates_Concepts
rm /home/e-smith/ssl.crt/*
rm /home/e-smith/ssl.key/*
rm /home/e-smith/ssl.pem/*
signal-event post-upgrade
signal-event reboot

But now i don't have ssl.key in /home/e-smith/ssl.key

I don't know what to do, the warn is a clue ? any advices ?
Thank you.

Title: Re: yum upgrade and can't access to server-manager.
Post by: bpkheops on October 10, 2015, 12:35:22 PM

Ok I have done this and now it works

config setprop modSSL CommonName www.mydomain.com
expand-template /home/e-smith/ssl.key/key
expand-template /home/e-smith/ssl.crt/crt
signal-event domain-modify
signal-event email-update
signal-event post-upgrade
signal-event reboot

Title: Re: yum upgrade and can't access to server-manager.
Post by: CharlieBrady on October 13, 2015, 03:14:30 PM

Quote from: bpkheops on October 10, 2015, 11:46:47 AM

I have upgraded my sme server 9 with yum upgrade.
But now I can't access to my admin server, I have a ssl protocol error in browser when I use https://x.x.x.x/server-manager/ from the lan (idem with https://nameofserver/server-manager/

What browser were you using? What were the details of the 'ssl protocol error'? Without knowing what the problem was we cannot recommend a solution/workaround.