Trying to setup a more secure load balanced distribution point environment. Currently have HTTP and SAMBA distribution point using port 80 on RHEL. Due to security concerns, need to secure it by using HTTPS and TLS 1.2. Could not find information on installing root/issuing/SSL certificates on Linux, changing port to 443 only (no HTTP), getting httpd/apache to use HTTPS instead of HTTP. Anyone successfully do this? Does it work?
What are you running HTTP on nginx or Apache?
On apache you'll want todo something like this
(Google redirect http to https)
Both these you ideally want to enable a virtual server on 443 instead.
We use Debian, all HTTPS.
From my notes.
openssl req -new -newkey rsa:2048 -nodes -keyout dp.mycompany.com.key -out dp.mycompany.com.csr
Generate cert with CA and then copy that file to the same folder as the .key and .csr
Create caspershare.conf in sites /apache2/sites-available as below,
CustomLog "/var/log/apache2/caspershare.log" combined
Allow from all
sudo a2enmod ssl
sudo a2dismod autoindex
Then restart Apache, RSYNC the lot and you're good to go.