INSTALL OPENSSL IN CUSTOM LOCATION:
a) mkdir -p /app/webauth_test/jaydev & Copy software folder from raappdev21:/app/webauth_test/jaydev
b) cd /app/webauth_test/jaydev/software/openssl-1.0.1
c) rm -rf openssl-1.0.1s
D) tar -zxvf openssl-1.0.1s.tar.gz
e) cd /app/webauth_test/jaydev
f) mkdir -p openssl openssl-1.0.1s_install
g) cd /app/webauth_test/jaydev/software/openssl-1.0.1/openssl-1.0.1s
h)./config --prefix=/app/webauth_test/jaydev/openssl --openssldir=/app/webauth_test/jaydev/openssl-1.0.1s_install shared
i)make depend
j)make test
k)make install
l)Add the below to end of .profile
export PATH=/app/webauth_test/jaydev/openssl/bin:$PATH
export LD_LIBRARY_PATH=/app/webauth_test/jaydev/openssl/lib:$LD_LIBRARY_PATH
APACHE SETUP:
a)cd /app/webauth_test/jaydev/software/Apache
b)tar -xvf httpd-2.2.31.tar
c)mkdir -p /app/webauth_test/jaydev/apache-2.2.31
d)cd /app/webauth_test/jaydev/software/Apache/httpd-2.2.31
e)vi config.nice
"./configure" \
"--prefix=/app/webauth_test/jaydev/apache-2.2.31" \
"--with-ssl=/app/webauth_test/jaydev/openssl" \
"--enable-mods-shared=most" \
"--enable-proxy" \
"--enable-module=ssl" \
"--enable-ssl" \
"--enable-module=so" \
"--with-apxs=/usr/sbin/apxs" \
"--with-included-apr" \
"$@"
f)./config.nice
g)make
h)make install
i)Copy jay.conf,ssl.conf,ldap.conf,webauth.conf from current webauth to /app/webauth_test/jaydev/apache-2.2.31/conf and add below parameter to core-facilities.conf
SSLProtocol -ALL +TLSv1.2 +TLSv1.1 +TLSv1
SSLCipherSuite HIGH:MEDIUM:!MD5:!RC4
SSLHonorCipherOrder On
j)Copy the certs directory from current webauth to /app/webauth_test/jaydev/apache-2.2.31
k)Do the path change for certs and webauth key files,but don't change other paths(Ruby,passenger paths).
l) Include the files to httpd.conf
m)Stop the old apache and bring up this new apache.
n)Then go to old apache home and do below steps.
cd /app/jaydev1/webauth/bin
mv apachectl.sh apachectl.sh.do.not.start
vi apachectl.sh and add belwo lines
echo -e "\nCurrently Apache is running on /app/webauth_test/jaydev/apache-2.2.31/"
echo -e "\nPlease refer SFI-494 for more details\n"
echo -e "In case if you want to revert back ,Please follow below steps\n\n"
echo -e "\ncd /app/webauth_test/jaydev/apache-2.2.31/"
echo -e "\n ./apachectl stop "
echo -e "\ncd /app/jaydev1/webauth/bin"
echo -e "\nmv apachectl.sh apachectl.sh.dnu;mv apachectl.sh.do.not.start apachectl.sh"
echo -e "\n./apachectl.sh start"
a) mkdir -p /app/webauth_test/jaydev & Copy software folder from raappdev21:/app/webauth_test/jaydev
b) cd /app/webauth_test/jaydev/software/openssl-1.0.1
c) rm -rf openssl-1.0.1s
D) tar -zxvf openssl-1.0.1s.tar.gz
e) cd /app/webauth_test/jaydev
f) mkdir -p openssl openssl-1.0.1s_install
g) cd /app/webauth_test/jaydev/software/openssl-1.0.1/openssl-1.0.1s
h)./config --prefix=/app/webauth_test/jaydev/openssl --openssldir=/app/webauth_test/jaydev/openssl-1.0.1s_install shared
i)make depend
j)make test
k)make install
l)Add the below to end of .profile
export PATH=/app/webauth_test/jaydev/openssl/bin:$PATH
export LD_LIBRARY_PATH=/app/webauth_test/jaydev/openssl/lib:$LD_LIBRARY_PATH
APACHE SETUP:
a)cd /app/webauth_test/jaydev/software/Apache
b)tar -xvf httpd-2.2.31.tar
c)mkdir -p /app/webauth_test/jaydev/apache-2.2.31
d)cd /app/webauth_test/jaydev/software/Apache/httpd-2.2.31
e)vi config.nice
"./configure" \
"--prefix=/app/webauth_test/jaydev/apache-2.2.31" \
"--with-ssl=/app/webauth_test/jaydev/openssl" \
"--enable-mods-shared=most" \
"--enable-proxy" \
"--enable-module=ssl" \
"--enable-ssl" \
"--enable-module=so" \
"--with-apxs=/usr/sbin/apxs" \
"--with-included-apr" \
"$@"
f)./config.nice
g)make
h)make install
i)Copy jay.conf,ssl.conf,ldap.conf,webauth.conf from current webauth to /app/webauth_test/jaydev/apache-2.2.31/conf and add below parameter to core-facilities.conf
SSLProtocol -ALL +TLSv1.2 +TLSv1.1 +TLSv1
SSLCipherSuite HIGH:MEDIUM:!MD5:!RC4
SSLHonorCipherOrder On
j)Copy the certs directory from current webauth to /app/webauth_test/jaydev/apache-2.2.31
k)Do the path change for certs and webauth key files,but don't change other paths(Ruby,passenger paths).
l) Include the files to httpd.conf
m)Stop the old apache and bring up this new apache.
n)Then go to old apache home and do below steps.
cd /app/jaydev1/webauth/bin
mv apachectl.sh apachectl.sh.do.not.start
vi apachectl.sh and add belwo lines
echo -e "\nCurrently Apache is running on /app/webauth_test/jaydev/apache-2.2.31/"
echo -e "\nPlease refer SFI-494 for more details\n"
echo -e "In case if you want to revert back ,Please follow below steps\n\n"
echo -e "\ncd /app/webauth_test/jaydev/apache-2.2.31/"
echo -e "\n ./apachectl stop "
echo -e "\ncd /app/jaydev1/webauth/bin"
echo -e "\nmv apachectl.sh apachectl.sh.dnu;mv apachectl.sh.do.not.start apachectl.sh"
echo -e "\n./apachectl.sh start"