If we have multiple atlassian applications on one host and Apache with mod_proxy in front.
The idea is that communication to Apache is SSL https. SSL stops at apache and it is http between Apache and tomcat for applications. So there is a virtual host for each application.
The DNS entires look something like this:
The question is. Is it possible to use a single SAN certificate at Apache virtual host level? I am not familiar with SAN certificates.
Just add a virtualhost for each application.
Preferably you should use a separate configuration file for the SSL config:
In each virtualhost include the ssl config like this:
In the include file add something like:
SSLProtocol all -SSLv2 -SSLv3
SSLCipherSuite "EECDH+ECDSA+AESGCM EECDH+aRSA+AESGCM EECDH+ECDSA+SHA384 EECDH+ECDSA+SHA256 EECDH+aRSA+SHA384 EECDH+aRSA+SHA256 EECDH+aRSA+RC4 EECDH EDH+aRSA RC4 !aNULL !eNULL !LOW !3DES !MD5 !EXP !PSK !SRP !DSS"
Connect with like-minded Atlassian users at free events near you!Find a group
Connect with like-minded Atlassian users at free events near you!
Unfortunately there are no AUG chapters near you at the moment.Start an AUG
We're bringing product updates and pro tips on teamwork to ten cities around the world.Save your spot