HTTPD can not find NSS DB certificate.

Solution Verified - Updated -

Issue

  • When I try an import my certificate into an NSS DB httpd will not start with at Certificate not found: 'my_cert' error message.
  • Here is what I am doing to import the certificate.
certutil -A -d /etc/httpd/alias -n my_cert -t "TC,," -a -i /etc/httpd/conf/ssl.crt/my_cert.crt
certutil -L -d /etc/httpd/alias

Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI

my_cert                                                       CT,,
  • When I try to start httpd, I see this:
# service httpd start
Starting httpd: Please enter password for "NSS FIPS 140-2 Certificate DB" token:
                                                           [FAILED]
# tail -n3 /var/log/httpd/error_log
[notice] SELinux policy enabled; httpd running as context unconfined_u:system_r:httpd_t:s0
[notice] suEXEC mechanism enabled (wrapper: /usr/sbin/suexec)
[error] Certificate not found: 'Server-Cert'

Environment

  • Red Hat Enterprise Linux (RHEL)
    • Apache (httpd)
      • NSS + mod_nss

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content