Challenge PKI : 5.3. Setup HTTP repository with virtual hosts

[BACK]

In this testcase set we assume one server hosts and two virtual hosts as follows.

192.168.1.101 ldap1
192.168.1.102 ldap2 iso389.jcsinc.co.jp crca.moj.go.jp
192.168.1.103 ldap3 repository.secomtrust.net

The main web server runs on '192.168.1.101' and virtual host server runs on '192.168.1.103' as the host 'repository.secomtrust.net'. SECOMTrust.net use HTTP repository for FullCRL distribution which is specified in the second cRLDistributionPoints.fullName.

5.3.1. Installation

# 1. move into HTTP repository data directory.
% cd /usr/local/cpki/testcase/cpki2002jpki2/data/httprep (default)
# 2. install a CRL by typing follows.
% make install

5.3.2. Apache virtual host setting.

Edit '/etc/httpd/conf/httpd.conf' as follows.
  1. Modify 'Listen' section.
    Listen 192.168.1.101:80
    Listen 192.168.1.103:80
    
  2. Append the following.
    <VirtualHost 192.168.1.103:80>
        DocumentRoot /var/www/html
        ServerName repository.secomtrust.net
        ErrorLog logs/repository.secomtrust.net-error_log
        CustomLog logs/repository.secomtrust.net-access_log common
        <Directory "/var/www/html/cpki/testcase_jgpki2/repository.secomtrust.net">
            Order allow,deny
            Allow from all
        </Directory>
    </VirtualHost>
    <Directory "/var/www/html/cpki/testcase_jgpki2/repository.secomtrust.net">
        Order deny,allow
        Deny from all
    </Directory>
    

JNSA/IPA Challenge PKI Test Suite