How do I allow HTTPS for Apache on localhost?

by

I’ve just attempted this – I needed to test some development code on my localhost Apache on Windows. This was WAAAY more difficult than it should be. But here are the steps that managed to work after much hairpulling…

I found that my Apache install comes with openssl.exe which is helpful. If you don’t have a copy, you’ll need to download it. My copy was in Apache2\bin folder which is how I reference it below.

Steps:

  1. Ensure you have write permissions to your Apache conf folder
  2. Open a command prompt in Apache2\conf folder
  3. Type
    ..\bin\openssl req -config openssl.cnf -new -out blarg.csr -keyout blarg.pem

  4. You can leave all questions blank except:

    • PEM Passphrase: a temporary password such as “password”
    • Common Name: the hostname of your server

  5. When that completes, type
    ..\bin\openssl rsa -in blarg.pem -out blarg.key

  6. Generate your self-signed certificate by typing:
    ..\bin\openssl x509 -in blarg.csr -out blarg.cert -req -signkey blarg.key -days 365

  7. Open Apache’s conf\httpd.conf file and ensure SSL module is enabled – there should be no hash at the start of this line:
    LoadModule ssl_module modules/mod_ssl.so

  8. Some Apache installations place the SSL config in a separate file. If so, ensure that the SSL conf file is being included. In my case I had to uncomment this line:
    Include conf/extra/httpd-ssl.conf

  9. In the SSL config httpd-ssl.conf I had to update the following lines:

    • Update
      SSLSessionCache "shmcb:C:\Program Files (x86)\Zend\Apache2/logs/ssl_scache(512000)"
      to
      SSLSessionCache "shmcb:C:/Progra\~2/Zend/Apache2/logs/ssl_scache(512000)"

      (The brackets in the path confuse the module, so we need to escape them)
    • DocumentRoot – set this to the folder for your web files
    • ServerName – the server’s hostname
    • SSLCertificateFile "conf/blarg.cert"
    • SSLCertificateKeyFile "conf/blarg.key"


  10. Restart Apache.

  11. Try loading https://localhost/ in your browser.

Hopefully you made it this far. Feel free to update this post with any other helpful info.

(Screenshots courtesy of Neil Obremski and his helpful article – although now quite out-of-date.)

More Related Contents:

  1. How do you redirect HTTPS to HTTP?
  2. How to stop Chrome from redirecting to HTTPS?
  3. htaccess redirect to https://www
  4. Accessing localhost (xampp) from another computer over LAN network – how to?
  5. How to enable local network users to access my WAMP sites?
  6. Https to http redirect using htaccess
  7. How to force https on elastic beanstalk?
  8. ssl_error_rx_record_too_long and Apache SSL [closed]
  9. Unable to establish SSL connection, how do I fix my SSL cert?
  10. apache redirect http to https and www to non www
  11. Obsolete cryptography warning from Browser
  12. Setting up SSL on a local xampp/apache server
  13. How to redirect HTTPS requests to HTTP without a certificate (Apache VirtualHosts) and avoid a certificate warning
  14. Redirect HTTP to HTTPS on default virtual host without ServerName
  15. Force HTTPS on certain URLs and force HTTP for all others
  16. How can I have CodeIgniter load specific pages using SSL?
  17. Do I need to convert .CER to .CRT for Apache SSL certificates? If so, how?
  18. tunneling secure websocket connections with apache
  19. How to CORS-enable Apache web server (including preflight and custom headers)?
  20. A problem occurred somewhere in the SSL/TLS handshake
  21. Force SSL/HTTPS with mod_rewrite [duplicate]
  22. ASP.NET MVC RequireHttps in Production Only
  23. How to do an HTTPS POST from Android?
  24. SSL Error: unable to get local issuer certificate
  25. Laravel Routes not working, Apache configuration only allows for public/index.php/route
  26. How to force Laravel Project to use HTTPS for all routes?
  27. How can I know if the request to the servlet was executed using HTTP or HTTPS?
  28. .htaccess 301 redirect for all https to http EXCEPT ONE PAGE
  29. javax.net.ssl.sslpeerunverifiedexception no peer certificate
  30. How can I make Android Volley perform HTTPS request, using a certificate self-signed by an Unknown CA?

Leave a Comment