6.4.4.2.
Windows
Up one level
Configuring Apache 2.2 on Windows
This section describes how to
configure Apache 2.2 for Windows systems to provide transport
layer security for GRIA services.
Install Apache 2.2
Install Apache 2.2 with OpenSSL by downloading and running the Win32 binary installer from http://httpd.apache.org/download.cgi
Apache2.2 Configuration
Edit the default apache configuration as follows:
- Enable ssl and proxy_ajp modules by uncommenting the following lines in httpd.conf
#LoadModule ssl_module modules/mod_ssl.so #LoadModule proxy_module modules/mod_proxy.so #LoadModule proxy_ajp_module modules/mod_proxy_ajp.so #Include conf/extra/httpd-ssl.conf
- Edit conf\extra\httpd-ssl.conf to provide the absolute paths to the certificate files previously created using the following parameters (N.B. use forward slashes in paths):
- SSLCertificateFile (e.g. "C:/gria/server.crt")
- SSLCertificateKeyFile (e.g. "C:/gria/private-key.pem")
- SSLCACertificateFile (e.g. "C:/gria/CA.crt")
- SSLCARevocationFile [if you have one] (e.g. "C:/gria/crl.pem")
- Logging. Add the following lines to http-ssl.conf within the <VirtualHost_default_:443> environment (change the Apache install path if not installed to the default directory):
ErrorLog "C:/Program Files/Apache Software Foundation/Apache2.2/logs/grid-error.log" LogLevel info TransferLog "C:/Program Files/Apache Software Foundation/Apache2.2/logs/grid-error.log"
- Restart apache
- N.B.: Ensure any firewall that is running allows access to the services on port 443.
In addition, according to the GRIA packages you are installing add one or more of the following lines to httpd-ssl.conf within the <VirtualHost _default_:443>...</VirtualHost> environment:
ProxyPass /gria-basic-app-services ajp://localhost:8009/gria-basic-app-services ProxyPass /gria-client-mgt ajp://localhost:8009/gria-client-mgt ProxyPass /gria-service-provider-mgt ajp://localhost:8009/gria-service-provider-mgt
Save the changes.
