FluidSurveys » Blog » Uncategorized » Cherokee Web-Server SSL Setup

Cherokee Web-Server SSL Setup

25 Sep
2 Comments

Over the last couple of days we have been running into quite a few issues regarding our SSL certificate in Internet Explorer 6. Once we made sure all of the media on our site was coming from a valid SSL source, our certificates worked fine on all browsers aside from the dreaded IE6. Though this is becoming less and less of a concern to many people, we here at FluidSurveys still work hard to support those die-hard fans who for whatever reason refuse to give up the browser war and continue to side with the six.

Initially, we thought we had it set up properly by following a mix of instructions for other web servers, such as apache and IIS, figuring out proper configuration through trial and error and we thought we had it all working. This was great until we noticed a pop-up in IE6 stating “The security certificate was issued by a company you have chosen not to trust. View the certificate to determine whether you want to trust the certifying authority.” After looking in to this message, I had determined that this message was caused by not having the intermediate certificate and root certificate installed properly with Cherokee. Simple enough, right? I checked with our certificate issuer and they had instructions for installing these certificates for what seemed like every web server but Cherokee web-server.  From the Apache instructions I knew I was looking for the equivalent of  the SSLCertificateChainFile which would provide the full chain of certificates from ours, back down to the root certificate.

After trying many things, and contacting godaddy, who told me they did not support Cherokee, I finally managed to figure out how to get it to work. The answer is pretty simple, if you follow the rest of the directions about setting up SSL with Cherokee, pointing your virtual server to the correct ssl certificate (Ours was fluidsurveys.com.crt) and the proper key (fluidsurveys.com.key) there was no place to input the gd_bundle.crt (The inermediate certificate package that godaddy provided us). The solution is to combine your site certificate (fluidsurveys.com.key) with your bundle certificate, root certificate, or intermediate certificates. To do this, simply make a backup of your site certificate (fluidsurveys.com.crt), then cat the intermediate bundle with the original site certificate.  “cat gd_bundle.crt >> fluidsurveys.com.crt” This should now solve your issue with IE6 not recognizing the issuer of your SSL certificate.

Posted in: Blog

No related posts.

Share this

FluidSurveys
Use Cases

Get in touch!

You can reach our friendly support team by email.

In the real world, you can find us at:

1203 Geiger Ln., Suite 100 Bridgewater, NJ 08807 United States

1729 Bank St. Suite 200
Ottawa ON Canada K1V 7Z5

McAfee SECURE sites help keep you safe from identity theft, credit card fraud, spyware, spam, viruses and online scams
TRUSTe online privacy certification
© FluidSurveys. All rights reserved. Privacy Policy | Terms and Conditions
A Chide.it Element.