HTTPD can not find NSS DB certificate.

Solution Verified - Updated -

Issue

  • When I try an import my certificate into an NSS DB httpd will not start with at Certificate not found: 'my_cert' error message.
  • Here is what I am doing to import the certificate.
certutil -A -d /etc/httpd/alias -n my_cert -t "TC,," -a -i /etc/httpd/conf/ssl.crt/my_cert.crt
certutil -L -d /etc/httpd/alias

Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI

my_cert                                                       CT,,
  • When I try to start httpd, I see this:
# service httpd start
Starting httpd: Please enter password for "NSS FIPS 140-2 Certificate DB" token:
                                                           [FAILED]
# tail -n3 /var/log/httpd/error_log
[notice] SELinux policy enabled; httpd running as context unconfined_u:system_r:httpd_t:s0
[notice] suEXEC mechanism enabled (wrapper: /usr/sbin/suexec)
[error] Certificate not found: 'Server-Cert'

Environment

  • Red Hat Enterprise Linux (RHEL)
    • Apache (httpd)
      • NSS + mod_nss

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase of over 48,000 articles and solutions.

Current Customers and Partners

Log in for full access

Log In