Hello All,
Ive been using the WAMP stack for years and have always been able to find answers ... This one has me stumped as Ive never ran into this .
I currently have a valid wildcard cert for the ORG I work for which we use for all servers .. Can someone walk me through as to what Im doing wrong with the cert install .. To my knowledge I do not need to generate a CSR as I already have the cert etc ... My understanding is a new CSR is for a new cert .. (I could be wrong) .
I have 3 files wich Ive downloaded.
Added XXX to filenames.
aed2b0bxxxxxxxx.crt
aed2b0bxxxxxxxx.pem
gd_bundle-g2-g1.crt
I actually followed a guide for self signed on the server itself wich works fine but we need it to use our wildcard ...
After setting up the self signed I went to try and use our wildcard by editing the httpd-ssl.conf.
Once I edit the lines for the SSL the server will not start ...
Here is the working version with the self signed OpenSSL. Ive removed the commenting and just left the lines .
<--------------------------------------------------------------------->
# Server Certificate:
SSLCertificateFile "D:/wamp64/bin/apache/apache2.4.35/conf/key/certificate.crt"
# Server Private Key:
SSLCertificateKeyFile "D:/wamp64/bin/apache/apache2.4.35/conf/key/private.key"
<--------------------------------------------------------------------->
And here is what I changed to that results in Apache start failure .
I have also tried using both aed2b0bxxxxxxxx.crt and gd_bundle-g2-g1.crt as well as both aed2b0bxxxxxxxx.pem and aed2b0bxxxxxxxx.key
<--------------------------------------------------------------------->
# Server Certificate:
SSLCertificateFile "D:/wamp64/bin/apache/apache2.4.35/conf/key/aed2b0bxxxxxxxx.crt"
# Server Private Key:
SSLCertificateKeyFile "D:/wamp64/bin/apache/apache2.4.35/conf/key/aed2b0bxxxxxxxx.pem"
<--------------------------------------------------------------------->
---------------------------------------------------------------------------------------
Here is my SSL error log using .KEY
[Mon Jul 22 10:59:18.613458 2019] [ssl:emerg] [pid 7060:tid 652] AH02577: Init: SSLPassPhraseDialog builtin is not supported on Win32 (key file D:/wamp64/bin/apache/apache2.4.35/conf/key/aed2b0bbfd79a471.key)
[Mon Jul 22 10:59:18.613458 2019] [ssl:emerg] [pid 7060:tid 652] AH02564: Failed to configure encrypted (?) private key localhost:443:0, check D:/wamp64/bin/apache/apache2.4.35/conf/key/aed2b0bbfd79a471.key
[Mon Jul 22 10:59:18.613458 2019] [ssl:emerg] [pid 7060:tid 652] SSL Library Error: error:0D0680A8:asn1 encoding routines:asn1_check_tlen:wrong tag
[Mon Jul 22 10:59:18.613458 2019] [ssl:emerg] [pid 7060:tid 652] SSL Library Error: error:0D08303A:asn1 encoding routines:asn1_template_noexp_d2i:nested asn1 error
[Mon Jul 22 10:59:18.613458 2019] [ssl:emerg] [pid 7060:tid 652] SSL Library Error: error:0D0680A8:asn1 encoding routines:asn1_check_tlen:wrong tag
[Mon Jul 22 10:59:18.613458 2019] [ssl:emerg] [pid 7060:tid 652] SSL Library Error: error:0D07803A:asn1 encoding routines:asn1_item_embed_d2i:nested asn1 error (Type=RSA)
[Mon Jul 22 10:59:18.613458 2019] [ssl:emerg] [pid 7060:tid 652] SSL Library Error: error:04093004:rsa routines
ld_rsa_priv_decode:RSA lib
[Mon Jul 22 10:59:18.613458 2019] [ssl:emerg] [pid 7060:tid 652] SSL Library Error: error:0D0680A8:asn1 encoding routines:asn1_check_tlen:wrong tag
[Mon Jul 22 10:59:18.613458 2019] [ssl:emerg] [pid 7060:tid 652] SSL Library Error: error:0D07803A:asn1 encoding routines:asn1_item_embed_d2i:nested asn1 error (Type=PKCS8_PRIV_KEY_INFO)
And here is the result using .PEM
[Mon Jul 22 11:01:06.692959 2019] [ssl:emerg] [pid 2604:tid 656] AH02577: Init: SSLPassPhraseDialog builtin is not supported on Win32 (key file D:/wamp64/bin/apache/apache2.4.35/conf/key/aed2b0bbfd79a471.pem)
[Mon Jul 22 11:01:06.692959 2019] [ssl:emerg] [pid 2604:tid 656] AH02564: Failed to configure encrypted (?) private key localhost:443:0, check D:/wamp64/bin/apache/apache2.4.35/conf/key/aed2b0bbfd79a471.pem
[Mon Jul 22 11:01:06.692959 2019] [ssl:emerg] [pid 2604:tid 656] SSL Library Error: error:0D0680A8:asn1 encoding routines:asn1_check_tlen:wrong tag
[Mon Jul 22 11:01:06.692959 2019] [ssl:emerg] [pid 2604:tid 656] SSL Library Error: error:0D08303A:asn1 encoding routines:asn1_template_noexp_d2i:nested asn1 error
[Mon Jul 22 11:01:06.692959 2019] [ssl:emerg] [pid 2604:tid 656] SSL Library Error: error:0D0680A8:asn1 encoding routines:asn1_check_tlen:wrong tag
[Mon Jul 22 11:01:06.692959 2019] [ssl:emerg] [pid 2604:tid 656] SSL Library Error: error:0D07803A:asn1 encoding routines:asn1_item_embed_d2i:nested asn1 error (Type=RSA)
[Mon Jul 22 11:01:06.692959 2019] [ssl:emerg] [pid 2604:tid 656] SSL Library Error: error:04093004:rsa routines
ld_rsa_priv_decode:RSA lib
[Mon Jul 22 11:01:06.692959 2019] [ssl:emerg] [pid 2604:tid 656] SSL Library Error: error:0D0680A8:asn1 encoding routines:asn1_check_tlen:wrong tag
[Mon Jul 22 11:01:06.692959 2019] [ssl:emerg] [pid 2604:tid 656] SSL Library Error: error:0D07803A:asn1 encoding routines:asn1_item_embed_d2i:nested asn1 error (Type=PKCS8_PRIV_KEY_INFO)
I appologize for the lengthy post, trying to provide as much detail as possible ... Having a heck of a time so any help or guidance is much appreciated ... Thank you all in advance .. !!