Challenge PKI : 5.3. Setup HTTP repository with virtual hosts

In this testcase set we assume one server hosts and two virtual hosts as follows.

192.168.1.101 ldap1

192.168.1.102 ldap2 iso389.jcsinc.co.jp crca.moj.go.jp

192.168.1.103 ldap3 repository.secomtrust.net

The main web server runs on '192.168.1.101' and virtual host server runs on '192.168.1.103' as the host 'repository.secomtrust.net'. SECOMTrust.net use HTTP repository for FullCRL distribution which is specified in the second cRLDistributionPoints.fullName.

5.3.1. Installation

# 1. move into HTTP repository data directory.

% cd /usr/local/cpki/testcase/cpki2002jpki2/data/httprep (default)

# 2. install a CRL by typing follows.

% make install

5.3.2. Apache virtual host setting.

1. Modify 'Listen' section.

   
   Listen 192.168.1.101:80
   
   Listen 192.168.1.103:80
   
   

2. Append the following.

   
   <VirtualHost 192.168.1.103:80>
   
       DocumentRoot /var/www/html
   
       ServerName repository.secomtrust.net
   
       ErrorLog logs/repository.secomtrust.net-error_log
   
       CustomLog logs/repository.secomtrust.net-access_log common
   
       <Directory "/var/www/html/cpki/testcase_jgpki2/repository.secomtrust.net">
   
           Order allow,deny
   
           Allow from all
   
       </Directory>
   
   </VirtualHost>
   
   <Directory "/var/www/html/cpki/testcase_jgpki2/repository.secomtrust.net">
   
       Order deny,allow
   
       Deny from all
   
   </Directory>
   
   

JNSA/IPA Challenge PKI Test Suite