Ok, I've been fighting with installing an Equifax cert on a Cpanel/WHM box running RedHat 7.1.
I FINALLY got WHM to say it installed the cert. I tried on my own prior to this with no luck.
The problem I have is that I have to restart httpd. I do it via WHM and get an error saying httpd has failed. I try it via SSH, and get the following errors:
Syntax error on line 4990 of /usr/local/apache/conf/httpd.conf: Invalid command 'SSLVerifyClient', perhaps mis-spelled or defined by a module not included in the server configuration

Syntax error on line 4991 of /usr/local/apache/conf/httpd.conf:
Invalid command 'SSLEnable', perhaps mis-spelled or defined by a module not included in the server configuration

Why, oh why, is this happening to me? Anyone have a clue?

if you run ps ax | grep httpd

did it have -DSSL or just plain httpd?

if it doesn't have it, you could run this:

/etc/rc.d/init.d/httpd stop
/etc/rc.d/init.d/httpd startssl

after that run ps ax | grep httpd again and verify

When all ok, edit your
/etc/rc.d/init.d/httpd script

in the

start)

add -DSSL like the one in the startssl) part

it is like this:

start)
if [ $RUNNING -eq 1 ]; then
echo "$0 $ARG: httpd (pid $PID) already running"
continue
fi
if $HTTPD -DSSL; then
echo "$0 $ARG: httpd started"
else
echo "$0 $ARG: httpd could not be started"
ERROR=3
fi
;;



Good luck

ps ax | grep httpd gave me this:


21907 ? S 0:00 /usr/local/apache/bin/httpd -DSSL
21923 ? S 0:01 /usr/local/apache/bin/httpd -DSSL
21924 ? S 0:02 /usr/local/apache/bin/httpd -DSSL
21926 ? S 0:02 /usr/local/apache/bin/httpd -DSSL
23270 ? S 0:00 /usr/local/apache/bin/httpd -DSSL
24493 ? S 0:00 /usr/local/apache/bin/httpd -DSSL
24494 ? S 0:00 /usr/local/apache/bin/httpd -DSSL
24496 ? S 0:00 /usr/local/apache/bin/httpd -DSSL
24699 ? S 0:00 /usr/local/apache/bin/httpd -DSSL
24741 ? S 0:00 /usr/local/apache/bin/httpd -DSSL
24746 ? S 0:00 /usr/local/apache/bin/httpd -DSSL
24825 ? S 0:00 /usr/local/apache/bin/httpd -DSSL
24850 ? S 0:00 /usr/local/apache/bin/httpd -DSSL
24907 ? S 0:00 /usr/local/apache/bin/httpd -DSSL
24909 ? S 0:00 /usr/local/apache/bin/httpd -DSSL
24914 ? S 0:00 /usr/local/apache/bin/httpd -DSSL
24955 ? S 0:00 /usr/local/apache/bin/httpd -DSSL
24976 pts/0 S 0:00 grep httpd

/etc/rc.d/init.d/httpd had EXACTLY what you said to put in there.

Hmmm my httpd.conf doesn't have those two things you mentioned above. Maybe because I haven't installed any certs yet.

Hi,

Restart doesn't work correctly because it's reading your configuration before loading mod_ssl. The reason for this, is that the lines which activate mod_ssl are already enclosed within <IfDefine>'s.

If you enclose your SSL Virtual Host block within tags like the following <IfDefine SSL></IfDefine> then /usr/sbin/httpd restart should work without a hitch.

Or, you could just remove the <IfDefine>'s which activate mod_ssl.

Both should solve your problem.

Vince.

If you enclose your SSL Virtual Host block within tags like the following <IfDefine SSL></IfDefine> then /usr/sbin/httpd restart should work without a hitch.
Perfect! Thank you!