logo
Apache Lounge
Webmasters

 

About Forum Index Downloads Search Register Log in RSS X


Keep Server Online

If you find the Apache Lounge, the downloads and overall help useful, please express your satisfaction with a donation.

or

Bitcoin

A donation makes a contribution towards the costs, the time and effort that's going in this site and building.

Thank You! Steffen

Your donations will help to keep this site alive and well, and continuing building binaries. Apache Lounge is not sponsored.
Post new topic   Forum Index -> Apache View previous topic :: View next topic
Reply to topic   Topic: DER SSL certificates vs Apache 2.4.9 ?
Author
Mathan Karthik R



Joined: 02 May 2014
Posts: 4
Location: India
PostPosted: Fri 02 May '14 11:30    Post subject: DER SSL certificates vs Apache 2.4.9 ? Reply with quote
I'm facing problem with latest Apache 2.4.9. Previously we used Apache 2.4.7 ​version which supports DER SSL certificates. But Latest Apache(2.4.9) is not working with DER SSL certificates. I have to convert DER certificate to PEM format to start the Apache server. Am i missing anything ? Is DER certificate not supported in Apache 2.4.9 ?
Back to top
James Blond
Moderator


Joined: 19 Jan 2006
Posts: 7373
Location: Germany, Next to Hamburg
PostPosted: Fri 02 May '14 17:40    Post subject: Reply with quote
What does your error log say to the DER issue?
Back to top
Mathan Karthik R



Joined: 02 May 2014
Posts: 4
Location: India
PostPosted: Fri 02 May '14 18:47    Post subject: Reply with quote
Hi James Blond,

Thanks for the reply. Please find the error message,
Quote:
Starting the Component - Apache service
[Fri May 02 14:27:34.169535 2014] [ssl:emerg] [pid 9108:tid 320] AH02562: Failed to configure certificate *********:8383:0 (with chain), check apache/conf/server.crt
[Fri May 02 14:27:34.169535 2014] [ssl:emerg] [pid 9108:tid 320] SSL Library Error: error:0906D06C:PEM routines:PEM_read_bio:no start line (Expecting: TRUSTED CERTIFICATE) -- Bad file contents or format - or even just a forgotten SSLCertificateKeyFile?
[Fri May 02 14:27:34.169535 2014] [ssl:emerg] [pid 9108:tid 320] SSL Library Error: error:140DC009:SSL routines:SSL_CTX_use_certificate_chain_file:PEM lib
AH00016: Configuration Failed
The Component - Apache service is running.


Using the below command, I've converted my DER certificate to PEM, It worked. But I want to know, Is it possible to use DER without converting it ?

Code:
openssl x509 -inform der -in certificate.cer -out certificate.pem
Back to top
James Blond
Moderator


Joined: 19 Jan 2006
Posts: 7373
Location: Germany, Next to Hamburg
PostPosted: Mon 05 May '14 16:44    Post subject: Reply with quote
I think it is related to the OpenSSL you use. Did you download your apache from Apache lounge?
Back to top
rks4sm



Joined: 28 Nov 2013
Posts: 17
Location: New Delhi
PostPosted: Wed 25 Jun '14 17:31    Post subject: Reply with quote
Hi,

We are also facing the same issue?

The apache service did not start after the update and log suggest the same error as you showed in your post.

How can we resolve his issue?

DO I need to convert my server certificate and the Intermediate certificate from DER(crt) to PEM?

TIA,
rakesh
Back to top
Mathan Karthik R



Joined: 02 May 2014
Posts: 4
Location: India
PostPosted: Fri 27 Jun '14 4:43    Post subject: Reply with quote
Still, I haven't found the root cause for this issue. I'm converting the DER certificate and using the same.

Mathan Karthik R
Back to top
admin
Site Admin


Joined: 15 Oct 2005
Posts: 692
PostPosted: Fri 27 Jun '14 9:56    Post subject: Reply with quote
Maybe you can post your issues also at http://httpd.apache.org/userslist.html .

Httpd developers are following also this list.
Back to top


Reply to topic   Topic: DER SSL certificates vs Apache 2.4.9 ? View previous topic :: View next topic
Post new topic   Forum Index -> Apache