Changes between Version 1 and Version 2 of idpiam2018

Timestamp:

Sep 3, 2018, 7:18:31 AM (6 years ago)

Author:

admin

Comment:

--

idpiam2018

@@ -193 +193 @@
 
  * 
-   {{{
+{{{
    add-apt-repository ppa:certbot/certbot
 }}}
  * 
-   {{{
+{{{
    apt install python-certbot-apache
 }}}
  * 
-   {{{
+{{{
    certbot --apache -d idp.YOUR-DOMAIN
 }}}
@@ -256 +256 @@
 13. (OPTIONAL) If you haven't follow the letsencrypt method Create a Certificate and a Key self-signed for HTTPS
  * 
-   {{{
+{{{
    mkdir /root/certificates
 }}}
  * 
-   {{{
+{{{
    openssl req -x509 -newkey rsa:4096 -keyout /root/certificates/idp-key-server.key -out /root/certificates/idp-cert-server.crt -nodes -days 1095
 }}}
@@ -266 +266 @@
    
  * 
-   {{{
+{{{
    mv /location-to-crts/idp-cert-server.crt /root/certificates
 }}}
  * 
-   {{{
+{{{
    mv /location-to-crts/idp-key-server.key /root/certificates
 }}}
  * 
-   {{{
+{{{
    mv /location-to-crts/PublicCA.crt /root/certificates
 }}}
@@ -281 +281 @@
    
  * 
-   {{{
+{{{
    chmod 400 /root/certificates/idp-key-server.key
 }}}
  * 
-   {{{
+{{{
    chmod 644 /root/certificates/idp-cert-server.crt
 }}}
  * 
-   {{{
+{{{
    chmod 644 /root/certificates/PublicCA.crt
 }}}
@@ -295 +295 @@
    Create the file `/etc/apache2/sites-available/idp-ssl.conf` as follows:
 
-   {{{
+{{{
    <IfModule mod_ssl.c>
       SSLStaplingCache        shmcb:/var/run/ocsp(128000)
@@ -331 +331 @@
    Enable '''proxy_http''', '''SSL''' and '''headers''' Apache2 modules:
  * 
-   {{{
+{{{
    a2enmod proxy_http ssl headers alias include negotiation
 }}}
  * 
-   {{{
+{{{
    a2ensite idp-ssl.conf
 }}}
  * 
-   {{{
+{{{
    service apache2 restart
 }}}
@@ -345 +345 @@
    Configure Apache2 to redirect all on HTTPS:
  * 
-   {{{
+{{{
    vim /etc/apache2/sites-enabled/000-default.conf
 }}}
@@ -361 +361 @@
 14. Modify `server.xml`:
  * 
-   {{{
+{{{
    vim /etc/tomcat8/server.xml
 }}}