Multiple SSL certificates on CentOS/Apache

Support for security such as Firewalls and securing linux
maseer
Posts: 5
Joined: 2014/10/09 00:43:24

Multiple SSL certificates on CentOS/Apache

Postby maseer » 2015/11/04 02:44:52

Hi Team,

I am using CentOS 6.5 on Apache.
When configured to SSL to have multiple Virtual host with the SSL certificate throws following error when restarting Apache.

root@tst ~]# sudo service httpd restart
Stopping httpd: [ OK ]
Starting httpd: [Wed Nov 04 12:23:46 2015] [warn] _default_ VirtualHost overlap on port 443, the first has precedence.

SSL Config as below and we have only 1 IP for this server and separate set of certificates each host.

<VirtualHost *:443>
ServerName xxx.xxxx.xxx.xx
.......
</VirtualHost>

<VirtualHost *:443>
ServerName yyy.yyyy.yyy.yy
.......
</VirtualHost>

Please can you help me to find the issue.

Thanks,
Maz

aks
Posts: 2498
Joined: 2014/09/20 11:22:14

Re: Multiple SSL certificates on CentOS/Apache

Postby aks » 2015/11/04 18:01:49

I guessing .. don't use the port as the differentiator (is that a word?) for the virtual hosts, use something else (like the URL).

User avatar
TrevorH
Forum Moderator
Posts: 21171
Joined: 2009/09/24 10:40:56
Location: Brighton, UK

Re: Multiple SSL certificates on CentOS/Apache

Postby TrevorH » 2015/11/04 18:44:32

If you are doing SSL then either you need a separate IP address for each different site that requires a different certificate or you need to use SNI.
CentOS 5 died in March 2017 - migrate NOW!
Full time Geek, part time moderator. Use the FAQ Luke