Hi,
ich hab es exakt so gemacht wie hier beschrieben:
01. On the Linux host type
mkdir /etc/cer
02. In the next step you create the certificate request
openssl req -new -sha256 -nodes -days 1095 -out \certificate.csr -newkey rsa:2048 -keyout \certificate.key -config <(
cat <<-EOF
[req]
default_bits = 2048
prompt = no
default_md = sha256
req_extensions = req_ext
distinguished_name = dn
[ dn ]
C=SR
L=Zemoon
CN = checkmk.mycompany.local
[ req_ext ]
subjectAltName = @alt_names
[ alt_names ]
DNS.1 = checkmk.mycompany.local
IP.1 = 10.7.88.213
EOF
)
03. Now switch to the Windows-CA start Powsershell and type
certreq -submit -attrib “Company-Linux”
04. In the next step upload the Certificate with WinSCP on the Linux Host
05. Copy all Files from /etc/cer in the right directory
cp certificate.key /etc/ssl/private/
cp certificate.cer /etc/ssl/certs/
cp chain.cer /etc/ssl/certs/
06. Edit the Apache config file
nano /etc/apache2/sites-available/default-ssl.conf
SSLCertificateFile /etc/ssl/certs/certificate.cer
SSLCertificateKeyFile /etc/ssl/private/nagios.key
SSLCertificateChainFile /etc/ssl/certs/chain.cer
07. In the last step type the following commandlets
a2ensite default-ssl
a2enmod ssl
systemctl restart apache2