On This Page
From January 01, 2023, TOS R21-3 Classic is EOL. Technical support will be available for a limited period to customers with Extended Support agreements.
Removing Passphrase from SSL Certificate
You can remove a passphrase from an SSL certificate using OpenSSL. This will avoid Apache prompting for a passphrase every time it is started.
To remove the passphrase from an SSL certificate
- Remove any existing soft links to certificate and key files.
# rm -f /etc/pki/tls/private/localhost.key
- Backup existing key file.
# cp /usr/local/st/conf/https.key /usr/local/st/conf/https-st_orig.key
- On the SecureTrack server, run
opensslto create a new certificate without a passphrase.# openssl rsa -in /usr/local/st/conf/https-st_orig.key -out /usr/local/st/conf/https.key
- Create new soft links to the key files.
# ln -s /usr/local/st/conf/https.key /etc/pki/tls/private/localhost.key
- Change ownership and permission of your SSL certificate.
# chown st:st /usr/local/st/conf/https.key
# chmod 0640 /usr/local/st/conf/https.key - Restart HTTPD:
# systemctl restart httpd
