I created a virtual server, put it on its own IP, added a self generated SSL, and cannot connect to it. I keep getting an error saying there is a problem connecting to it. The Apache error log says:
[Tue Sep 11 22:59:18 2007] [warn] RSA server certificate is a CA certificate (BasicConstraints: CA == TRUE !?)
[Tue Sep 11 22:59:18 2007] [warn] RSA server certificate CommonName (CN) `www.abc.com’ does NOT match server name!?
This looks kinda like the certificate is installed system-wide, rather than for the virtual server. Did you use the "Manage SSL Certificate" form found in the "Server Configuration" menu for the domain in question?
If so, what does the VirtualHost section from the Apache configuration file look like for this domain?
BTW-A self-signed certificate ought to have been generated automatically for you with all of the correct settings. Was there a reason to replace it? (I’m pulling in a bit of data gleaned from your email to me, that the problem cert is self-signed.)
Yes, it was generated originally, but I regenerated it a number of times from the Manage SSL Certificate while under this domain to try and fix the errors. The second error about domain name not matching would go away when I generated it without the www.
We used the Configure Website for SSL section to change the default directory to one that we created.
The directives section under Configure Website for SSL for this domain contains the following:
To re-animate this moribund thread, I wanted to point out that the solution turned out to be opening the firewall. Virtualmin is supposed to open all ports needed for hosting during install, but fails to open 443. This will be fixed in the next release of virtualmin-base.