Question & Answer
Question
How to set up TLS for a HTTP Apache server
Answer
The HTTP Admin offers a TLS wizard to configure TLS for the Apache server which can access Digital Certificate Manager (DCM) to create a new Local signed certificate or select an existing certificate already in the store. DCM needs to be configured with a *SYSTEM store and Local CA store if the certificate is going to be a Local signed certificate. For more information about DCM including requesting a certificate from an Internet CA see the following:
1. The first step is to access the IBM Web Administration for i GUI page by opening a browser and using one of the following URLs (replace systemName with the IBM i IP address or system name):
http://systemName
8. After restarting the server, verify that both the non-secured port and the secured port are working. If they are both working but you do not wish to leave the non-secure port active, you can either delete/comment out the Listen directive for the non-secured port or follow technote 686719 (https://www.ibm.com/support/pages/node/686719) to rewrite non-secured port to the secured port
[{"Type":"MASTER","Line of Business":{"code":"LOB68","label":"Power HW"},"Business Unit":{"code":"BU070","label":"IBM Infrastructure"},"Product":{"code":"SWG60","label":"IBM i"},"ARM Category":[{"code":"a8m0z0000000CISAA2","label":"Digital Certificate Manager"},{"code":"a8m0z0000000CGqAAM","label":"IBM i HTTP Server"}],"ARM Case Number":"","Platform":[{"code":"PF012","label":"IBM i"}],"Version":"All Versions"}]
Was this topic helpful?
Document Information
Modified date:
04 October 2024
UID
nas8N1022003