If we have multiple atlassian applications on one host and Apache with mod_proxy in front.
The idea is that communication to Apache is SSL https. SSL stops at apache and it is http between Apache and tomcat for applications. So there is a virtual host for each application.
The DNS entires look something like this:
The question is. Is it possible to use a single SAN certificate at Apache virtual host level? I am not familiar with SAN certificates.
Just add a virtualhost for each application.
Preferably you should use a separate configuration file for the SSL config:
In each virtualhost include the ssl config like this:
In the include file add something like:
SSLProtocol all -SSLv2 -SSLv3
SSLCipherSuite "EECDH+ECDSA+AESGCM EECDH+aRSA+AESGCM EECDH+ECDSA+SHA384 EECDH+ECDSA+SHA256 EECDH+aRSA+SHA384 EECDH+aRSA+SHA256 EECDH+aRSA+RC4 EECDH EDH+aRSA RC4 !aNULL !eNULL !LOW !3DES !MD5 !EXP !PSK !SRP !DSS"
Connect with like-minded Atlassian users at free events near you!Find a group
Connect with like-minded Atlassian users at free events near you!
Unfortunately there are no AUG chapters near you at the moment.Start an AUG