Apache 2.2 on Win Server 2003 with new self-signed cert -- PCTECH

Good News Everybody!

A new search engine is coming soon.

As a stop gap measure, we are using Google's custom search engine service.

The self-signed certificate expired, so I generated a new one using OpenSSL as follows:

cd c:\data\websites\security

openssl genrsa -des3 -rand myfile.xyz -out mir-ca.org.key 2048

openssl rsa -in mir-ca.org.key -out mir-ca.org.pem

openssl req -new -key mir-ca.org.pem -config "C:\Program Files\Apache Software Foundation\Apache2.2\conf\openssl.cnf" -out mir-ca.org.csr

openssl x509 -req -days 3650 -in mir-ca.org.csr -signkey mir-ca.org.pem -out mir-ca.org.crt

Now when I try to start Apache, I get

[Tue Jan 17 10:40:39 2012] [error] Unable to configure RSA server private key
[Tue Jan 17 10:40:39 2012] [error] SSL Library Error: 185073780 error:0B080074:x509 certificate routines:X509_check_private_key:key values mismatch

I used

openssl x509 -noout -text -in mir-ca.org.crt -modulus

openssl rsa -noout -text -in mir-ca.org.pem -modulus

and the Modulus= sections of the outputs match exactly.

The Apache httpd.conf hasn't changed, nor has httpd-ssl.conf, which is Included by httpd.conf:

Include conf/extra/httpd-ssl.conf

I'm no expert at this stuff - what else should I be looking at? Am I doing something completely boneheaded?

--
*Peter Dow* /
Dow Software Services, Inc.
909 793-9050
pdow@xxxxxxxxxxxxxxx <mailto:pdow@xxxxxxxxxxxxxxx> /

This mailing list archive is Copyright 1997-2026 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact [javascript protected email address].

Operating expenses for this site are earned using the Amazon Associate program and Google Adsense.