{"id":11,"date":"2013-01-26T06:47:05","date_gmt":"2013-01-26T06:47:05","guid":{"rendered":"http:\/\/murraymurray.dyndns-home.com\/blog\/?p=11"},"modified":"2013-01-26T06:47:05","modified_gmt":"2013-01-26T06:47:05","slug":"owncloud-part-2","status":"publish","type":"post","link":"https:\/\/goblinpeasant.com\/blog\/owncloud-part-2\/","title":{"rendered":"Owncloud Part 2"},"content":{"rendered":"<p>After some research it became pretty clear that getting SSL to work with a private key would be simple. \u00a0You must make sure that openssl is installed, and yum installing it should do everything required to get that working.<br \/>\n# Generate private key<br \/>\nopenssl genrsa -out ca.key 1024<\/p>\n<p># Generate CSR<br \/>\nopenssl req -new -key ca.key -out ca.csr<\/p>\n<p># Generate Self Signed Key<br \/>\nopenssl x509 -req -days 999 -in ca.csr -signkey ca.key -out ca.crt<\/p>\n<p># Copy the files to the correct locations<br \/>\ncp ca.crt \/etc\/pki\/tls\/certs<br \/>\ncp ca.key \/etc\/pki\/tls\/private\/ca.key<br \/>\ncp ca.csr \/etc\/pki\/tls\/private\/ca.csr<br \/>\nThen you have to tell Apache to use the new keys by editting the ssl.conf file.<br \/>\nvi +\/SSLCertificateFile \/etc\/httpd\/conf.d\/ssl.conf<\/p>\n<p>Add in lines:<br \/>\nSSLCertificateFile \/etc\/pki\/tls\/certs\/ca.cr<br \/>\nSSLCertificateKeyFile \/etc\/pki\/tls\/private\/ca.key<\/p>\n<p>Once the correct SSL Certificates were installed, and the Apache service was restarted, the SSL kicked in. \u00a0Using a browser to access OwnCloud over https just started working. \u00a0All you have to do is accept the untrusted certificate when accessing the page. Once you tell your client to accept using that key, all functionality of the site will now operate the same, but will now use https, including downloading files through encrypted means.<\/p>\n<p>The trouble, however, is that it is a private key, and therefore is automatically not trusted. \u00a0In order for any windows OwnCloud client to work, it has to be a trusted certificate.<\/p>\n<p>The easiest way to trust a certificate in windows is to open Internet Explorer to the https url and click on the \u201cContinue to webpage\u201d option. \u00a0Once it\u2019s using that certificate, it will say something along the lines of \u201cCertificate Error\u201d in the URL line. \u00a0Click on that, and it should allow you to \u201cView Certificates\u201d from which you can install the certificate and place it into a specific \u201cstore\u201d called something along the lines of \u201cTrusted Root Certificate Authorities\u201d which will basically allow any kind of SSL communication using that certificate.<br \/>\nOnce that\u2019s installed on the windows client as a trusted certificate, the windows OwnCloud client was able to sync with the https URL.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>After some research it became pretty clear that getting SSL to work with a private key would be simple. \u00a0You must make sure that openssl is installed, and yum installing it should do everything required to get that working. # Generate private key openssl genrsa -out ca.key 1024 # Generate CSR openssl req -new -key [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":30,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[5],"tags":[],"class_list":["post-11","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-website-admin"],"_links":{"self":[{"href":"https:\/\/goblinpeasant.com\/blog\/wp-json\/wp\/v2\/posts\/11","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/goblinpeasant.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/goblinpeasant.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/goblinpeasant.com\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/goblinpeasant.com\/blog\/wp-json\/wp\/v2\/comments?post=11"}],"version-history":[{"count":0,"href":"https:\/\/goblinpeasant.com\/blog\/wp-json\/wp\/v2\/posts\/11\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/goblinpeasant.com\/blog\/wp-json\/wp\/v2\/media\/30"}],"wp:attachment":[{"href":"https:\/\/goblinpeasant.com\/blog\/wp-json\/wp\/v2\/media?parent=11"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/goblinpeasant.com\/blog\/wp-json\/wp\/v2\/categories?post=11"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/goblinpeasant.com\/blog\/wp-json\/wp\/v2\/tags?post=11"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}