1

UPDATE:

Updated to be more specific with what I'm dealing with.

I thought I was on the right path before, but now things just feel more obscure.

I have no experience with Apache/Tomcat/Whatever TeamCity is running under, pretty much only worked in IIS before, and I am having a hard time understanding how to install a SSL certificate to use TeamCity with https.

I have an SSL Cert from a global CA but I am having a hard time with the instructions here and here.

I imported my cert into a keystore and I configured my server.xml file to point at my keystore following the directions. However, when I go to my site it says there is a problem with my certificate. It seems like the instructions from the CA, the instructions from TeamCity, and the instructions from Apache (which team city links to) are all different.

Can anyone help explain the steps I'm missing/skipping?

Note, this is running on a Windows box if that makes a difference.

Adam
  • 205
  • 4
  • 14

2 Answers2

0

To install the certificate on apache2 you'll need to edit either your httpd.conf or SSL.conf file to contain three entries:

SSLEngine on
SSLCertificateFile /path/to/your/apacheconf/ssl.crt/server.crt
SSLCertificateKeyFile /path/to/your/apacheconf/ssl.key/server.key

You may need to check that you've installed OpenSSL and mod_ssl.so.

Chris Ting
  • 899
  • 4
  • 5
  • I couldn't find these .conf files so I think maybe I don't know what it is running. Edited question to be more specific. – Adam May 22 '11 at 14:38
  • You're going to need more information about what you're running. Your TeamCity client server is running off Java. You need to know if you're using Tomcat, or if you have a more complex setup with both the Apache webserver and Tomcat. Look at your Widows services for Tomcat and Apache. – Chris Ting May 22 '11 at 20:54
  • I don't see Apache or Tomcat in my windows services. I only see TeamCity Web Server. In the TeamCity conf directory I have a server.xml which has comments regarding Catalina as the service. Sorry, I don't know what information is helpful here. – Adam May 24 '11 at 14:10
  • Catalina is Tomcat's servlet container. Do you see a service called Catalina running? – Chris Ting May 25 '11 at 05:20
  • Nope. I'm going to email JetBrains and ask them. – Adam May 25 '11 at 12:48
0

Good morning.

Based on your info and the comments, it runs over a modified Tomcat. It must be easy for you modify the file "server.xml" and locate the parameters needed for SSL Certificate.

Read this document as a base Tomcat SSL (full). The section "Edit the Tomcat Configuration File" will explain you how to modify the file to use .key and .crt files.

Maybe, if your certificate is in PEM or PFX format you need to use OpenSSL (refer to Convert Certificates for the more common commands) to transform it in the format needed by Tomcat.

Good luck

Note: Maybe there's more than a server.xml file, you must modify the one that configures de server, not the one that configures the application that runs over.

Carlos Garcia
  • 318
  • 3
  • 12