HTTPS on XAMPP 3.2.2 (ENABLING OPEN SSL, NOT SECURE CHROME)
Posted: 08. September 2017 21:03Hello All,
I have been struggling with this issue for a week now. I tried almost everything on the internet but none seems to be working for me.
I am not much of a server guy but, following some tutorials i was able to set-up XAMPP v3.2.2 server on windows 2012 R2. MY website is " "https://dotxxxprod01/projects/"
Coming to my issue... It was ok for me to use HTTP until now, as chrome started showing "NOT SECURE" in bold near address bar my users started worrying about the sites.
I searched on the internet and found couple of steps to avoid this BACK IN 2011,2012 not sure it will work with new version but tried... i did the following
1) un-commented "extension=php_intl.dll", "extension=php_curl.dll", "extension=php_intl.dll" in PHP.INI file.
2) un-commented "LoadModule rewrite_module modules/mod_rewrite.so" in httpd.conf file.
3) Then i created certificate following --> Open a command window (Start->Run, type “cmd” and press “OK) -->cd c:\xampp\apache -->makecert
4) ON server - Imported that certificate into MMC.exe/certmgr.msc
5) copied the following into "c:\xampp\apache\conf\extra\httpd-xampp.conf"
<IfModule mod_rewrite.c>
RewriteEngine On
# Redirect /xampp folder to https
RewriteCond %{HTTPS} !=on
RewriteCond %{REQUEST_URI} xampp
RewriteRule ^(.*) https://%{SERVER_NAME}$1 [R,L]
# Redirect /phpMyAdmin folder to https
RewriteCond %{HTTPS} !=on
RewriteCond %{REQUEST_URI} phpmyadmin
RewriteRule ^(.*) https://%{SERVER_NAME}$1 [R,L]
# Redirect /security folder to https
RewriteCond %{HTTPS} !=on
RewriteCond %{REQUEST_URI} security
RewriteRule ^(.*) https://%{SERVER_NAME}$1 [R,L]
# Redirect /webalizer folder to https
RewriteCond %{HTTPS} !=on
RewriteCond %{REQUEST_URI} webalizer
RewriteRule ^(.*) https://%{SERVER_NAME}$1 [R,L]
</IfModule>
6) changed "DocumentRoot "C:/xampp/htdocs" to my website folder like "C:/xampp/htdocs/projects"
7) added 127.0.0.1 localhost, 127.0.0.1 dotxxxprod01, 127.0.0.1 dotxxxxprod01.ste.d.us in "C:\Windows\System32\config\hosts" file
8 ) added following in httpd-vhosts.conf file
NameVirtualHost *:80
NameVirtualHost *:443
<VirtualHost *:80>
DocumentRoot "C:/xampp/htdocs"
ServerName localhost
</VirtualHost>
<VirtualHost *:80>
ServerName localhost
ServerAlias dotxxxxprod01
DocumentRoot "C:/xampp/htdocs/projects"
<Directory "C:/xampp/htdocs/projects" >
Options Indexes FollowSymLinks Includes ExecCGI
AllowOverride All
Order allow,deny
Allow from all
</Directory>
ServerAdmin admins@final.local
CustomLog final_local_access.log combined
ErrorLog final_local_error.log
LogLevel debug
</VirtualHost>
<VirtualHost *:443>
ServerName localhost
ServerAlias dotxxxxxprod01
DocumentRoot C:/xampp/htdocs/projects
<Directory "C:/xampp/htdocs/projects" >
Options Indexes FollowSymLinks Includes ExecCGI
AllowOverride All
Order allow,deny
Allow from all
</Directory>
SSLEngine on
SSLCertificateFile conf/ssl.crt/server.crt
SSLCertificateKeyFile conf/ssl.key/server.key
ServerAdmin admins@final.local
CustomLog final_local_access_ssl.log combined
ErrorLog final_local_error_ssl.log
LogLevel debug
</VirtualHost>
9) restarted apache and Mysql
I AM NOT SURE WHETHER I HAVE TO DO BOTH CERTIFICATE AND VHOSTS. TRIED BOTH AND ALSO INDIVIDUALLY, NONE SEEMS TO BE WORKING FOR ME. still chrome on client and server says not secure and "your site is not private".
YOU HELP IS GREATLY APPRECIATED. I AM VERY MUCH IN NEED FOR YOUR HELP. Thank you in advance
I have been struggling with this issue for a week now. I tried almost everything on the internet but none seems to be working for me.
I am not much of a server guy but, following some tutorials i was able to set-up XAMPP v3.2.2 server on windows 2012 R2. MY website is " "https://dotxxxprod01/projects/"
Coming to my issue... It was ok for me to use HTTP until now, as chrome started showing "NOT SECURE" in bold near address bar my users started worrying about the sites.
I searched on the internet and found couple of steps to avoid this BACK IN 2011,2012 not sure it will work with new version but tried... i did the following
1) un-commented "extension=php_intl.dll", "extension=php_curl.dll", "extension=php_intl.dll" in PHP.INI file.
2) un-commented "LoadModule rewrite_module modules/mod_rewrite.so" in httpd.conf file.
3) Then i created certificate following --> Open a command window (Start->Run, type “cmd” and press “OK) -->cd c:\xampp\apache -->makecert
4) ON server - Imported that certificate into MMC.exe/certmgr.msc
5) copied the following into "c:\xampp\apache\conf\extra\httpd-xampp.conf"
<IfModule mod_rewrite.c>
RewriteEngine On
# Redirect /xampp folder to https
RewriteCond %{HTTPS} !=on
RewriteCond %{REQUEST_URI} xampp
RewriteRule ^(.*) https://%{SERVER_NAME}$1 [R,L]
# Redirect /phpMyAdmin folder to https
RewriteCond %{HTTPS} !=on
RewriteCond %{REQUEST_URI} phpmyadmin
RewriteRule ^(.*) https://%{SERVER_NAME}$1 [R,L]
# Redirect /security folder to https
RewriteCond %{HTTPS} !=on
RewriteCond %{REQUEST_URI} security
RewriteRule ^(.*) https://%{SERVER_NAME}$1 [R,L]
# Redirect /webalizer folder to https
RewriteCond %{HTTPS} !=on
RewriteCond %{REQUEST_URI} webalizer
RewriteRule ^(.*) https://%{SERVER_NAME}$1 [R,L]
</IfModule>
6) changed "DocumentRoot "C:/xampp/htdocs" to my website folder like "C:/xampp/htdocs/projects"
7) added 127.0.0.1 localhost, 127.0.0.1 dotxxxprod01, 127.0.0.1 dotxxxxprod01.ste.d.us in "C:\Windows\System32\config\hosts" file
8 ) added following in httpd-vhosts.conf file
NameVirtualHost *:80
NameVirtualHost *:443
<VirtualHost *:80>
DocumentRoot "C:/xampp/htdocs"
ServerName localhost
</VirtualHost>
<VirtualHost *:80>
ServerName localhost
ServerAlias dotxxxxprod01
DocumentRoot "C:/xampp/htdocs/projects"
<Directory "C:/xampp/htdocs/projects" >
Options Indexes FollowSymLinks Includes ExecCGI
AllowOverride All
Order allow,deny
Allow from all
</Directory>
ServerAdmin admins@final.local
CustomLog final_local_access.log combined
ErrorLog final_local_error.log
LogLevel debug
</VirtualHost>
<VirtualHost *:443>
ServerName localhost
ServerAlias dotxxxxxprod01
DocumentRoot C:/xampp/htdocs/projects
<Directory "C:/xampp/htdocs/projects" >
Options Indexes FollowSymLinks Includes ExecCGI
AllowOverride All
Order allow,deny
Allow from all
</Directory>
SSLEngine on
SSLCertificateFile conf/ssl.crt/server.crt
SSLCertificateKeyFile conf/ssl.key/server.key
ServerAdmin admins@final.local
CustomLog final_local_access_ssl.log combined
ErrorLog final_local_error_ssl.log
LogLevel debug
</VirtualHost>
9) restarted apache and Mysql
I AM NOT SURE WHETHER I HAVE TO DO BOTH CERTIFICATE AND VHOSTS. TRIED BOTH AND ALSO INDIVIDUALLY, NONE SEEMS TO BE WORKING FOR ME. still chrome on client and server says not secure and "your site is not private".
YOU HELP IS GREATLY APPRECIATED. I AM VERY MUCH IN NEED FOR YOUR HELP. Thank you in advance