Open Martin-Weiss opened 7 years ago
@Martin-Weiss Hi Martin, I had to also make changes to pg_hba.conf and postgresql.conf in order to get Openattic to work properly with SSL. Did you have to do this? I ran stage 4 again and it doesn't appear to have overwritten the changes I made of Apache or Postgres outside of Deepsea, which is good.
To ensure openattic is reachable via SSL we should enable SSL for the apache instance on the openattic host:
Add SSL certificates in case they do not exist to /etc/ssl/servercerts as servercert.pem and serverkey.pem (in case the yast ca was created during SLES installation - these files might exist, already)
Add SSL to APACHE_SERVER_FLAGS="" in /etc/sysconfig/apache2 (APACHE_SERVER_FLAGS="SSL")
Create /etc/apache2/vhosts.d/vhost-ssl.conf with such a content:
Restart apache2 in case the SSL flag was added or the certificate was added / replaced or the vhost-ssl.conf was created / adjusted.