• Introducing WebPros Cloud - a fully managed infrastructure platform purpose-built to simplify the deployment of WebPros products !  WebPros Cloud enables you to easily deliver WebPros solutions — without the complexity of managing the infrastructure.
    Join the pilot program today!
  • Support for BIND DNS has been removed from Plesk for Windows due to security and maintenance risks.
    If a Plesk for Windows server is still using BIND, the upgrade to Plesk Obsidian 18.0.70 will be unavailable until the administrator switches the DNS server to Microsoft DNS.

Apache httpd won't start.

B

boxlocks

Guest
Running: Plesk for Linux, Ver. 9.2.3, Linux 2.6.18-194.8.1.el5, 64Bit

I overwrote the file /etc/httpd/conf/httpd.pem

Apache won't start. Error logs say the server name is mismatched.

Is there anyway to rebuild this file or create a new one?

Logs:
/var/log/httpd/error_log
Fri Sep 16 23:50:09 2011] [notice] suEXEC mechanism enabled (wrapper: /usr/sbin/suexec)
[Fri Sep 16 23:50:09 2011] [warn] RSA server certificate is a CA certificate (BasicConstraints: CA == TRUE !?)
[Fri Sep 16 23:50:09 2011] [warn] RSA server certificate CommonName (CN) `trinity.domain.com' does NOT match server name!?
[Fri Sep 16 23:50:09 2011] [warn] RSA server certificate CommonName (CN) `domain.com' does NOT match server name!?
[Fri Sep 16 23:50:09 2011] [warn] RSA server certificate CommonName (CN) `domain.com' does NOT match server name!?
[Fri Sep 16 23:50:09 2011] [warn] RSA server certificate CommonName (CN) `domain.com' does NOT match server name!?
[Fri Sep 16 23:50:09 2011] [warn] RSA server certificate CommonName (CN) `domain.com' does NOT match server name!?
[Fri Sep 16 23:50:09 2011] [warn] RSA server certificate CommonName (CN) `domain.com' does NOT match server name!?
[Fri Sep 16 23:50:09 2011] [warn] RSA server certificate CommonName (CN) `domain.com' does NOT match server name!?
[Fri Sep 16 23:50:09 2011] [warn] RSA server certificate CommonName (CN) `domain.com' does NOT match server name!?
[Fri Sep 16 23:50:09 2011] [warn] RSA server certificate CommonName (CN) `domain.com' does NOT match server name!?
[Fri Sep 16 23:50:09 2011] [warn] RSA server certificate CommonName (CN) `domain.com' does NOT match server name!?
[Fri Sep 16 23:50:09 2011] [warn] RSA server certificate CommonName (CN) `domain.com' does NOT match server name!?
Click to expand...

/var/log/httpd/ssl_error_log
[Fri Sep 16 23:51:43 2011] [warn] RSA server certificate is a CA certificate (BasicConstraints: CA == TRUE !?)
[Fri Sep 16 23:51:43 2011] [warn] RSA server certificate CommonName (CN) `localhost.localdomain' does NOT match server name!?
[Fri Sep 16 23:51:43 2011] [error] Unable to configure RSA server private key
[Fri Sep 16 23:51:43 2011] [error] SSL Library Error: 185073780 error:0B080074:x509 certificate routines:X509_check_private_key:key values mismatch
Click to expand...




Thank you.
 
Last edited by a moderator:
Try something like this


openssl genrsa 1024 > host.key
openssl req -new -x509 -nodes -sha1 -days 365 -key host.key > host.cert
cat host.cert host.key > httpd.pem

Now the httpd.pem should be placed in '/etc/httpd/conf' and the plesk services restarted.

/etc/init.d/psa stopall
/etc/init.d/psa startall
 
in logs I dont see critical errors, that's just warnings. it would be better if you show us traceview of start process: sh -x /etc/init.d/httpd start
 
You must log in or register to reply here.

Similar threads

abanico
Resolved Apache hangs every night "server reached MaxRequestWorkers setting"
Replies
2
Views
787
abanico
abanico
flederwiesel
Question `SSLVerifyClient require` -> AH10158: cannot perform post-handshake authentication
Replies
0
Views
965
flederwiesel
flederwiesel
wakabayashi
Resolved Fail2Ban - Postfix not working for SASL (bug?)
Replies
4
Views
2K
mizar
mizar
P
Issue Restoring backup on a new server fails always
Replies
2
Views
1K
Kaspar@Plesk
Kaspar@Plesk
M
Resolved Help request: SSL certificate seems to have trust issues. How to resolve?
Replies
4
Views
3K
MHC_1
M
Back
Top