Steve Clark skrev:
Does anyone have documentation on the steps necessary to use https for
OTRS. I saw in sysconfig an option for https - but I know changes have
to be
made in the apache config as well as making a certificate.
Just look at the apache documentation for enabling SSL. It's all down to
that. The only thing in the OTRS configuration is about generating of
the URLs.
Here's my configuration:
# ls -l /etc/apache2/sites-available/
total 4
-rw-r--r-- 1 root root 1160 2007-10-16 11:49 default
lrwxrwxrwx 1 root root 43 2007-10-19 11:27 <hostname> ->
/var/vhosts/<hostname>/etc/apache2.conf
lrwxrwxrwx 1 root root 47 2007-10-19 13:41 <hostname>.ssl ->
/var/vhosts/<hostname>/etc/apache2.ssl.conf
Relevant configuration files:
# cat /var/vhosts/<hostname>/etc/apache2.conf
ServerName <hostname>
DocumentRoot /var/vhosts/<hostname>/htdocs
ErrorLog /var/vhosts/<hostname>/log/error.log
CustomLog /var/vhosts/<hostname>/log/access.log combined
RedirectMatch ^/otrs/$ https://<hostname>/otrs/
RedirectMatch ^/$ https://<hostname>/otrs/
</VirtualHost>
# cat /var/vhosts/<hostname>/etc/apache2.ssl.conf
NameVirtualHost *:443
ServerName <hostname>:443
DocumentRoot /var/vhosts/<hostname>/htdocs/
CustomLog /var/vhosts/<hostname>/log/access.log combined
ErrorLog /var/vhosts/<hostname>/log/error.log
SSLEngine on
SSLCipherSuite
ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+eNULL
SSLCertificateFile /var/vhosts/<hostname>/etc/ssl/apache.pem
RedirectMatch ^/$ /otrs/
</VirtualHost>
/var/vhosts/<hostname>/etc/ssl/apache.pem contains the self-signed
certificate.
That should be it :) Of course make sure you have the relevant modules
for apache loaded. I use mod_ssl.
Marius
