HjermTS

Q: How to turn off server website SSL

Hi, it should be possible to stop the SSL website/service (443) and keeping normal website (80) on a 10.8 server. I have found some solution (googled) but I a little unsure if they will work since they mainly for 10.6 or 10.7 servers and my knowledge regarding Apache is that not high to verify if good or not.

Basically I using 443 (https) of another application and would like still to use the normaly website at port 80 (http).

Thanks

Mac mini, OS X Server

Posted on Oct 3, 2013 11:37 AM

Close

Q: How to turn off server website SSL

  • All replies
  • Helpful answers

  • by MrHoffman,

    MrHoffman MrHoffman Oct 3, 2013 9:41 PM in response to HjermTS
    Level 6 (15,627 points)
    Mac OS X
    Oct 3, 2013 9:41 PM in response to HjermTS

    Usually via Server.app?  Shut off / disable / remove the SSL access path; the HTTPS port 443 site.

     

    What sites are you looking at, and what are the sites suggesting?  (A little more detail there might help.)

     

    It's entirely possible to have multiple web sites on both port 443 and port 80, if you're not already aware of that.

  • by HjermTS,

    HjermTS HjermTS Oct 4, 2013 12:05 AM in response to MrHoffman
    Level 1 (0 points)
    Oct 4, 2013 12:05 AM in response to MrHoffman

    Yes I known multiple web sites - that's easy ;-). My issue is that I have mail server (3th part) running in the back around to have this working at is best it best to use 443.

    The work-around would be to charge the default port in ML server for default https site (can't set server.app only at new added pages).

    I can't see the server.app gives me option either delete or disable the https site or charging the port of the default https site.

    It seems Apache it turn off by default in 10.8 so can't change anything here either.

    Somewhere in a config file must be an option to charge the default port it is very unlikely it is hard coded.

  • by MrHoffman,

    MrHoffman MrHoffman Oct 4, 2013 7:08 AM in response to HjermTS
    Level 6 (15,627 points)
    Mac OS X
    Oct 4, 2013 7:08 AM in response to HjermTS

    No good choices: Set up Roundcube or whatever web mail client you're using on a different domain and allow that HTTPS, or start hacking the Apache configuration files (which may well derail Server.app, unfortunately), or operate as Apple intends here and (if this is the underlying issue) get yourself a commercial certificate for the web site, or switch to using remote mail clients and move off of the web mail client.

  • by HjermTS,

    HjermTS HjermTS Oct 5, 2013 3:53 AM in response to MrHoffman
    Level 1 (0 points)
    Oct 5, 2013 3:53 AM in response to MrHoffman

    hm.. solution -> moved our homepage to a hosted service and keeping webservice turn off...

    I already have commercial certificate...

  • by Mac Paramedic,

    Mac Paramedic Mac Paramedic Nov 18, 2015 7:31 PM in response to MrHoffman
    Level 1 (29 points)
    Nov 18, 2015 7:31 PM in response to MrHoffman

    I'm having the same problem as the OP,  but I have not found a solution.

     

    I'm running multiple wordpress websites with different domains using OS X server version 3.2.2 on a Mac Mini running Mavericks OS 10.9.5.

     

    I want to disable SSL web services on port 443 and force all incoming web traffic to use port 80.

     

    There doesn't seem to be a way to turn off the ssl service from the GUI, unless I'm missing something.

     

    I've tried editing /private/etc/apache2/http.conf to add the line "SSLEngine off" and restarted to find that the web server still offers https connections.

     

    I also edited /private/etc/apache2/extra/httpd-ssl.conf to comment out the line "Listen 443" and restarted find that the web server still offers https connections.

     

    I also edited /private/etc/apache2/extra/httpd-ssl.conf to SSLEngine off. No joy.

     

    Others have had this question as well and I can't find a solution.

     

    Why I'm doing this - I can't easily provide a ssl certificate, because there are multiple different domains running on one IP address. If the server offers ssl, incoming browsers see a self-signed certificate and it scares away visitors.

     

    Thanks for any suggestions to try. If I find a solution outside this forum, I will report back.

  • by Mac Paramedic,

    Mac Paramedic Mac Paramedic Nov 20, 2015 11:31 AM in response to Mac Paramedic
    Level 1 (29 points)
    Nov 20, 2015 11:31 AM in response to Mac Paramedic

    I found and edited the file /Library/Server/Web/Config/apache2/sites/0000_any_443_.conf  In that file, I changed SSL Engine on to SSL Engine off and it seems to have created the desired effect. Now, when a browser comes into the sites hosted on the server, it doesn’t see any sites offering of port 443 connections and the browser defaults to port 80.

  • by tamdtm,

    tamdtm tamdtm Mar 17, 2016 10:09 PM in response to Mac Paramedic
    Level 1 (0 points)
    Apple Watch
    Mar 17, 2016 10:09 PM in response to Mac Paramedic

    I have the same problem but I can not found that file.

    I just have found

    /Library/Server/Web/Config/apache2/sites/0000_any_443_.conf.default

    /Library/Server/Web/Config/apache2/sites/0000_any_443_.conf.orig

    /Library/Server/Web/Config/apache2/sites/0000_any_443_.conf.prev

    Do you have any idea?