Prerequisite.................................................2
1 Install openssl..........................................2
2 Install mod_ssl..........................................2
3 Install apache...........................................2
4 Install perl.............................................3
5 Install DBI-1.38........................................3
6 Install BerkelyDB........................................3
7 Install Openldap安裝......................................4
OpenCA安裝....................................................5
1 Install CA...............................................6
關於安裝CA的時候 可能 配置http.conf文件的時候未能正常通過WEB訪問到CA系統
http.conf
某部分:
NameVirtualHost 192.168.1.248:443
<VirtualHost *:443>----this part參見
==========================================
Setup 1: The server machine has one IP address (111.22.33.44) which resolves to the name server.domain.tld. There are two aliases (CNAMEs) www.domain.tld and www.sub.domain.tld for the address 111.22.33.44.
Server configuration:
... Port 80 ServerName server.domain.tld NameVirtualHost 111.22.33.44 <VirtualHost 111.22.33.44> DocumentRoot /www/domain ServerName www.domain.tld ... </VirtualHost> <VirtualHost 111.22.33.44> DocumentRoot /www/subdomain ServerName www.sub.domain.tld ... </VirtualHost>Apart from localhost there are no unspecified addresses/ports, therefore the main server only serves localhost requests. Due to the fact that www.domain.tld has the highest priority it can be seen as the default or primary server.
source:http://httpd.apache.org/docs/1.3/vhosts/examples.html
正確配置後就可以正常訪問了
當通過WEB登錄到CA系統時提示需要密碼
從一個外國網站上看到有人說應該看openca/etc/configure.xml這個文件裏<option>default_web_username以及default_web_password這部分字段來確定 不過我查看了我自己的那個文件 裏邊沒有定義這個字段 我就在想是不是意味着默認直接點確定可以進去 結果實驗失敗 通過觀摩 我自己添加了字段
<option>
<name>default_web_username</name>
<value>root</value>
</option>
<option>
<name>default_web_password</name>
<value>3Hbpdfe8d7f8d738d78s8C94U</value>
</option>
不過提交了新的配置重新登錄以後還是不能登錄上去......暫時不曉得如何弄