Differences

This shows you the differences between two versions of the page.

--- tutorial:adm:server_preparation_win [2019/04/12 10:38]
fiserp [HTTPd installation and configuration]
+++ tutorial:adm:server_preparation_win [2019/11/27 08:32]
fiserp [HTTPd installation and configuration]
@@ Line 139: / Line 139: @@
 Open the **services.msc** and reconfigure "Apache2.4" service to have ''StartupType=Automatic (Delayed start)''.
-Configure the HTTPd in its core config file ''C:\Apache24\conf'httpd.conf''. You can use the following file, just replace values for ''ServerAdmin'' and ''ServerName''.
+Configure the HTTPd in its core config file ''C:\Apache24\conf\httpd.conf''. You can use the following file, just replace values for ''ServerAdmin'' and ''ServerName''.
 <file apache httpd.conf>
 ServerRoot "c:/Apache24"
@@ Line 303: / Line 303: @@
 Configure the HTTPS virtual host in the ''C:\Apache24\conf\extra\httpd-ssl.conf'' file. Change ''demo.czechidm.com'' to the name of your server.
+<note>In some cases older clients (i.e. IE10 and older, Java6, etc.) will not be able to communicate with IdM due to the SSL settings. If this is your case, you may need to slacken the cipher settings a bit.</note>
 <file apache httpd-ssl.conf>
 Listen 443
-SSLCipherSuite HIGH:MEDIUM:!MD5:!RC4:!3DES
+SSLCipherSuite ALL:!ADH:!EXPORT:!SSLv2:RC4+RSA:+HIGH:+MEDIUM:!LOW:!RC4:!3DES+SHA:!IDEA
 SSLProxyCipherSuite HIGH:MEDIUM:!MD5:!RC4:!3DES
 SSLHonorCipherOrder on
-SSLProtocol all -SSLv2 -SSLv3
+SSLProtocol all -SSLv2 -SSLv3 -TLSv1 -TLSv1.1
 SSLProxyProtocol all -SSLv2 -SSLv3
 SSLPassPhraseDialog  builtin
 SSLSessionCache        "shmcb:c:/Apache24/logs/ssl_scache(512000)"
 SSLSessionCacheTimeout  300
 <VirtualHost _default_:443>