The idea ist quite good - a modified answer file with the suggested values seems to work at beginning: <log> INFO ] Restarting httpd Please use the user 'admin@internal' and password specified in order to login Web access is enabled at: http://hypervisor.local:2080/ovirt-engine https://hypervisor.local:2443/ovirt-engine Internal CA B1:02:C1:A4:7A:70:18:22:F5:4C:55:B3:F6:B3:6A:3D:BF:EF4 SSH fingerprint: SHA256:mj941Nk0yz2lrt0laognOHgTK18nP+zO6b4fPfXa3wM --== END OF SUMMARY ==-- </log> OK - I add 2443 manualy to firewall: <log> firewall-cmd --permanent --add-port=2443/tcp --zone=public firewall-cmd --reload </log> OK - httpd conf is still 443 instead of 2443, I change it manualy: <log> vi /etc/httpd/conf.d/ssl.conf </log> I see, that dissabling selinux is necessary - I do so: <log> vi /etc/sysconfig/selinux reboot </log> it still not work - in the Browser: <log> Errorcode: SSL_ERROR_RX_RECORD_TOO_LONG </log> ....and no idea anymore....