For more information about the above directive, visit the Apache home website (http://www.apache.org) or contact Digi-Sign Support at support@digi-sign.com
- Some Apache versions, depending if you are implementing a CGI application with
Digi-Access™ may require the following directive to be present:
The expression must match the following syntax (given as a BNF grammar notation):
comp ::= word "==" word | word "eq" word
| word "!=" word | word "ne" word
| word "<" word | word "lt" word
| word "<=" word | word "le" word
| word ">" word | word "gt" word
To configure Apache, do:
- Open for editing the httpd.conf Apache configuration file
- Locate the Virtual Host section for your SSL secured site
To enable Client Certificate Authentication on Apache 1.3 you will need to obtain your own Digi-ID™ Client Certificate, Certification Authority Certificate Chain (CA Chain) and setup Authentication Rules using the httpd.conf file and Apache configuration directives.
You will receive 2 Certificates from Digi-Sign. When viewed in a text editor, these certificates will look something like:
To enable the SSL facility on Apache 1.3, an SSL (Digi-SSL™) certificate is required.
Digi-SSL™ certificate can be obtained directly from Digi-Sign and requires a CSR (Certificate Signing Request) code.
A CSR is a file/string containing your certificate application information, including your Public Key, Company Name and the Common Name (in most cases FQDN - Fully Qualified Domain Name host name).
Generate your CSR and then copy and paste the contents of the CSR file into the
Digi-Access™ Setup and Implementation on Apache 1.3 (mod_ssl) Web Server
1. Enabling SSL communication security on Apache 1.3 web server
1.1 Generating a Certificate Signing Request (CSR) using Apache 1.3
1.2 Installing your Digi-SSL™ Certificate on Apache 1.3
1.2.1 Installing your Digi-SSL™ Certificate
1.2.2 Installing the CA Chain file containing the Root & Intermediate Certificates