When you set up secure connections, your public key must be associated with a digitally signed
certificate from a certificate authority (CA) who is designated as a trusted CA on your server.
You can buy a signed certificate by submitting a certificate request to a CA provider.
The IBM HTTP Server supports several external certificate authorities.
By default, many CAs are designated as trusted CAs on IBM HTTP Server.
select "Select a module to add" and open the drop down list.
Go to the bottom of the list and select "ibm_ssl" from the list.
The Module DLL will be placed to the right.
select the Apply button
select the Close button
select the Submit button
Set up secure host IP and additional port for secure server.
select Basic Settings
select Advanced Properties (Scope: GLOBAL)
select the Add button for the Specify additional ports and IP addresses
field - leave the IP address field empty and enter 443 in the port field.
select the Apply button
select the Close button
select the Submit button
Set up virtual host structure for secure server.
select Configuration Structure
select Create Scope (Scope: GLOBAL)
select VirtualHost in the "Select a valid scope to insert within the scope
selected in the right panel" field
enter the virtual host IP address or fully qualified domain name
enter the virtual host port (443)
enter the server name
leave Alternate name(s) for host blank
select the Submit button
Set up virtual host document root for secure server.
select Basic Settings
select Core Settings (Scope: <virtualhost you are working with>)
enter the server name as a fully qualified domain name
enter the document root directory name
select the Submit button
Set keyfile and SSL timeout values for secure server.
select Security
select Server Security (Scope: GLOBAL)
select Enable SSL radio No button. (disables SSL for Global scope)
enter the path and keyfile filename.
enter a Timeout value for SSL Version 2 session IDs. (100 secs)
enter a Timeout value for SSL Version 3 session IDs. (1000 secs)
select the Submit button
Enable SSL and select mode of Client Authorization.
select Security
select Host Authorization (Scope: VirtualHost) <host ip addr:443>
select Enable SSL radio Yes button. (Enables SSL for Virtual Secure Host)
select Mode of client authorization to be used radion button none.
select the Submit button
Restart the Server
To start a second secure virtual host
Set up virtual host structure for secure server.
select Configuration Structure
select Create Scope (Scope: GLOBAL)
select VirtualHost for the Select a valid scope to insert within the scope
selected in the right panel: field
enter the virtual host IP address or fully qualified domain name
enter the virtual host port (443)
enter the server name - leave Alternate name(s) for host blank
select the Submit button
Enable SSL and select mode of Client Authorization.
select Security
select Host Authorization (Scope: VirtualHost <host ip addr:443>)
select Enable SSL radio Yes button. (Enables SSL for Virtual Secure Host)
select Mode of client authorization to be used radion button none.
select the Submit button
Set up virtual host document root for secure server.
select Basic Settings
select Core Settings (Scope: <virtualhost you are working with>)
enter the server name as a fully qualified domain name