Home » Forums » Customer Forums » Installation Support

GLPI/OCS - ocs needs both http and https to work. How do I enable that?

Submitted by NiklasLjung on Tue, 03/09/2010 - 3:57am

Hi,

I'm a fan of OCS and migrated to the Jumpbox GLPI/OCS recently.
At the admin webconsole I can switch between SSL-only or plain http only for all virtualhosts.

But for OCS to work you _need_ both https and http to work simultaneously.
To be more precise, the url "https://host.domain.tld/download" needs to be accessed both ways for the package deployment feature. Also the SSL-cert must be trusted by clients, so the jumpbox self-certified cert is not very useful, but I have succesfully added a custom cert.

Personaly, I'd like non-SSL/http for all pages, but the "/download" needs to be both http and https accessible.

Best regards,
Niklas

‹ Running Nagiosadmin behind Firewall dump svn repository ›
»

GLPI/OCS - ocs needs both http and https to work. How do I enabl

Submitted by godber on Tue, 03/09/2010 - 10:47am.

Hello Niklas,
Thank you for pointing this out. I have just written a page in our Documentation wiki addressing user customizations to the JumpBox SSL behavior. Please let me know if the following page fails to answer your question:

http://wiki.jumpbox.com/doc/runtime/faq/change_ssl_behaviour

Austin

»

No Go

Submitted by NiklasLjung on Wed, 03/10/2010 - 3:36am.

Hi Austin,

thanks for your prompt reply!
However it did not work :(
Actually I read some post about removing the three Rewrite-statements in default.auto and tried it earlier with no success.
So I re-did it again your way but with the same result.

The setup was:
* SSL-mode = SSL-only with custom cert.
--- works fine with redirect to ssl.
* Followed Austins howto on the "Enable both HTTP and HTTPS"-scenario.
* Verified that /etc/apache2/sites-available/default.auto
had no Rewrite directives, just the two include-lines for *:80.
* Tested with IE6 and FF3.5.8 (with consistent results) and still got redirected to SSL.
* Rebooted GLPI/OCS VM and cleared browser caches but still get redirected to SSL.

Any idea?

Cheers
/Niklas

»

Tested on fresh glpi/ocs - still not working

Submitted by NiklasLjung on Thu, 03/11/2010 - 2:50am.

Hi,

to make sure I didn't f***up the configuration, I installed a fresh glpi/ocs VM.
* I started with SSL set to "Disable, redirect https to http" (no custom cert created).
* Then I followed Austins howto on the "Enable both HTTP and HTTPS"-scenario.
* Rebooted VM and cleared browser cache.
* Tested various http and https requests, but always got redirected to plain http.

FYI, all tests was on GLPI v 1.1.8 and "public adress" set to a FQDN.

Austin, with your infinite wisdom and kindness ;) could you please have a look at this again?

Regards,
Niklas

»

Sorry about this, the

Submitted by hexmap on Thu, 03/11/2010 - 10:47am.

Sorry about this, the instructions are for using "Use unique built-in certificate. (It just works.)"

If you don't want to use a custom certificate, I suggest you select the built-in certificate option and follow Austin's instructions.

If you have a custom cert, select the built-in certificate option, follow Austin's instructions and replace /etc/apache2/ssl/apache.pem with your certificate file. If you have a more complicated situation like a chain file, you will need to edit /etc/apache2/sites-available/default-ssl.auto with the appropriate changes.

Best wishes, David

»