I use the following config part to allow different certficates for virtual hosts, since on that host I have only 1 IP address: <IfModule mod_ssl.c> Listen 217.217.217.217:443 <VirtualHost 217.217.217.217:443> SSLEngine On Include conf/a.server.de </VirtualHost> Listen 217.217.217.217:444 <VirtualHost 217.217.217.217:444> SSLEngine On Include conf/a.server.info </VirtualHost> Listen 217.217.217.217:445 <VirtualHost 217.217.217.217:445> SSLEngine On Include conf/a.server.org </VirtualHost> </IfModule> Each included config file contains its own SSLCertificateFile and SSLCertificateKeyFile of course. This works, as long as all or only one KeyFile is encrypted. If I encrpyt more than one keyfile (each with a different password), the phase phrase dialog is successful but than the httpd dies with a "Unable to configure verify locations for client authentication ..." error. I'm not sure, but I guess, the passphrase query functions are buggy wrt. the used port: Apache/2.0.43 mod_ssl/2.0.43 (Pass Phrase Dialog) Some of your private key files are encrypted for security reasons. In order to read them you have to provide us with the pass phrases. Server a.server.org:443 (RSA) Enter pass phrase: Server a.server.info:443 (RSA) Enter pass phrase: Server a.server.de:443 (RSA) Enter pass phrase: Ok: Pass Phrase Dialog successful. ... bummer ... So IMHO its critical, since one can´t run Apache with encrypted keyfiles :(((
Sorry, small but important correction: This works, as long as all KeyFiles are unencrypted or only one KeyFile is encrypted.
This is probably the same issue as bug 21160; try the fix referenced there, which is included in the forthcoming 2.0.49 release, or please reopen if you still have problems with 2.0.49. *** This bug has been marked as a duplicate of 21160 ***