Certificate creation in Certman works fine. Certificate is created without issue, the common name is displayed and “valid until” populates. However, when I install the cert in https setup, httpd stops. “service httpd restart” attempt fails over ssh.
One thing I notice is the servername isn’t properly displayed in ssh. It read [root@host conf.d]. I think it should be [root@host ~]. My server name is in the format host.domain.com, where domain is our unique domain.
When I edit /etc/httpd/conf.d/ssl.conf and change SSLEngine from on to off, then restart httpd, I can get httpd going again and access the GUI.
I confirmed my hostname is set correctly in system admin, and ServerName in ssl.conf matches it.
I should also mention this is a wildcard certificate and it works just fine in other FreePBX instances. Just not on this VM, which is hosted by a new provider we are trying out.
This appears to be the offending error in error_log:
[ssl:emerg] [pid 16576] AH01903: Failed to configure CA certificate chain!
However, I tripled checked the CA Certificate Chain and it is identical to the one provided by the issuer. I also confirmed this CA Certificate Chain is working on another machine.
Here’s the output from systemctl status httpd.service
● httpd.service - The Apache HTTP Server
Loaded: loaded (/usr/lib/systemd/system/httpd.service; enabled; vendor preset: disabled)
Active: failed (Result: exit-code) since Tue 2019-02-12 18:40:37 PST; 1min 13s ago
Docs: man:httpd(8)
man:apachectl(8)
Process: 7069 ExecStop=/bin/kill -WINCH ${MAINPID} (code=exited, status=1/FAILURE)
Process: 7068 ExecStart=/usr/sbin/httpd $OPTIONS -DFOREGROUND (code=exited, status=1/FAILURE)
Main PID: 7068 (code=exited, status=1/FAILURE)
Feb 12 18:40:37 host.domain.com systemd[1]: Starting The Apache HTTP Server…
Feb 12 18:40:37 host.domain.com httpd[7068]: [Tue Feb 12 18:40:37.718498 2019] [so:warn] [pid 7068] AH01574: module ssl_module is already loaded, skipping
Feb 12 18:40:37 host.domain.com systemd[1]: httpd.service: main process exited, code=exited, status=1/FAILURE
Feb 12 18:40:37 host.domain.com kill[7069]: kill: cannot find process “”
Feb 12 18:40:37 host.domain.com systemd[1]: httpd.service: control process exited, code=exited status=1
Feb 12 18:40:37 host.domain.com systemd[1]: Failed to start The Apache HTTP Server.
Feb 12 18:40:37 host.domain.com systemd[1]: Unit httpd.service entered failed state.
Feb 12 18:40:37 host.domain.com systemd[1]: httpd.service failed.