Enable HTTPS Support with Apache does not work (WAPP)

Keywords: LAPP/MAPP/WAPP - Windows - Technical issue - Secure Connections (SSL/HTTPS)
bnsupport ID: 93c283f7-4cae-6c70-e30d-cb1001fa6f5b
Description:
Hi,

I´ve bought a Sectigo/Comodo Instant SSL Certificate and then followed the instructions for Enabling HTTPS Support with Apache [see documentation!] (https://docs.bitnami.com/aws/apps/wordpress/administration/enable-https-ssl-apache/).
I´am working on a Windows Server 2012 using WAPP Stack with Apache 2.4.46

I saved my certificate-files in the ./apache2/conf/ folder and the virtual host section in my bitnami.conf looks like:

SSLEngine on SSLCertificateFile "C:/wapp/apache2/conf/*server*.crt" SSLCertificateKeyFile "C:/wapp/apache2/conf/*server*.key" SSLCertificateChainFile "C:/wapp/apache2/conf/*server*.ca-bundle"

But it is not working, my website is not secured. Is there anything missing?
Do I have to change settings in my httpd.conf or httpd-ssl.conf files, too?

Maybe it is due to the last step (see quote below) in the documentation, which I cannot do because I´am working on Windows and the sudo commands are not working:

"…make them readable by the root user only with the following commands:

sudo chown root:root /opt/bitnami/apache2/conf/server*
sudo chmod 600 /opt/bitnami/apache2/conf/server*"

Can anyone give me suggestions what I can do?

Thanks!

Hello @tgr,

First of all, the support did not gather all the information it should. Could you run it again?

I can see this error with your SSL configuration:

SSL Checks finished

Script stderr:
 Active Certificate check failed: "CreateFile C:\\wapp**BNSUPPORT-PASS_TWO**/conf/extra/httpd-autoindex.conf\r: Die Syntax für den Dateinamen, Verzeichnisnamen oder die Datenträgerbezeichnung ist falsch."
2021/05/04 15:59:18 Found errors when checking the SSL configuration

Error running ./ssl-checker.exe -apache-root C:\wapp**BNSUPPORT-PASS_TWO** -apache-conf C:\wapp**BNSUPPORT-PASS_TWO**/conf/httpd.conf -hostname NPWebSrv -port 444: Active Certificate check failed: "CreateFile C:\\wapp**BNSUPPORT-PASS_TWO**/conf/extra/httpd-autoindex.conf\r: Die Syntax für den Dateinamen, Verzeichnisnamen oder die Datenträgerbezeichnung ist falsch."
2021/05/04 15:59:18 Found errors when checking the SSL configuration
Please wait...

Could you try the command below in order to verify your Apache syntax?

.\apache2\bin\httpd.exe -t

You could open your use_wapp.bat file and run the command there.

Regards

Hello @davidg,

I ran the command and the syntax is OK.

In the second error port 444 is mentioned. My SSL port is 443. In the .\apache2\conf\bitnami*bitnami.conf* I changed the port to 443. But in the .\apache2\conf\extra*httpd-ssl.conf* I cannot change the port to 443 without Apache not starting anymore.
I don´t understand how these two files are related? Should I change the port to 443 in the httpd-ssl.conf? When yes, how?

The picture shows the httpd-ssl.conf section with the Listen 444
httpd-ssl-conf

I ran the support again. The code for my support bundle is: 5ddd965e-3881-9505-fcfd-e1069aeca25c

Thanks and best regards

Hello @tgr,

It looks like you installed it on port 444. Usually, it is due to port 443 was blocked during the installation. You will need to change it in all the apache configuration files. In order to verify is another process is using port 443, you could use this command:

netstat -abon | findstr "443"

You could kill this process with the command below (PID is the last field of the command above):

taskkill /PID <typeyourPIDhere> /F

After that, you could try to start apache service again using port 443.

Regards

Hi @davidg,

I have found the problem and solved it. The external port of the webserver was not redirecting to the internal port 443. I changed it and now the SSL-certificate works.

1 Like

This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.