I had Nagios 3.0.6 up and running successfully using straight http and basic authentication per the Quick Start instructions found in the documentation. (That process went quite smoothly and I’ve populated several hosts for monitoring.)
I want to take it to the next “secure” level and access the site over HTTPS. To do this on an CentOS server (2.6) running Apache (2.x), I un-commented the line “SSLRequireSSL” in the /etc/httpd/conf.d/nagios.conf file.
Once I made this change, when I navigate to ](https://)/nagios I can authenticate through Apache but then get a 403 Forbidden Error, “You don’t have permission to access /nagios/ on this server.”
I verified SSL is working fine getting to the server as I can access the default Apache welcome screen at ](https://)/.
Am I missing an additional configuration change that is required to allow authentication after SSL is enabled? I can comment back the SSL Required line and can get back into the website again without issue. Is it a CGI access/authentication issue?
Additionally, I am seeing the error “Directory index forbidden by rule: /usr/local/nagios/share/” in my httpd/ssl_error_log, and as I mentioned above, the interface runs fine not over SSL.
Any insight is greatly appreciated.