On 11/17/05, Dhaval Patel <[EMAIL PROTECTED]> wrote:
> Hello all,
>
>    Then I read at some place that if you want APR you have do some extra
> configuration, which I followed in part 2.
>
> (2) Using OpenSSL.
>
>    I installed OpenSSL. I read documentation about how to generate key and
> certificate in OpenSSL howto. Then did following:
>
> a) goto c:\Tomcat5.5\bin
> b) openssl genrsa -des3 -out privkey.pem 2048 (generate key)
> c) openssl req -new -key privkey.pem -out cert.csr (genrate certificate 
> request)
> d) openssl req -new -x509 -key privkey.pem -out cacert.pem -days 1095 (create
> self signed certificate)
> e) followed APR config guide from tomcat 5.5 documentations.
> f) restart the tomcat.
> g) same error as I get before. request time out and no error in logs.
>
>     I dont know how to make it working. I would like to know more about it. 
> APR
> documentations says about APR Connectors configuration in which there are 
> http,
> https and etc. I believe that is <Connector port="8080" ... />, <Connector
> port="8443" ... /> and etc. Am I right? If I am right, then sslProtocol entry 
> in
> two documentation (SSL and APR) are getting different entries (TLS vs. 
> TLSv1). I
> dont know how to do it.
>
>     Does anyone know how to do it using real certificate (signed by Verisign 
> or
> something)? Does anyone know how to make it work with self signed certificate?
>
>     Thank you in advance.
>
>
> Regards,
> Dhaval
>
> P.S. Forgive me for writing long, but I want to explain everything is full
> details. Thanks.

I suppose giving the Connector element is an irrelevant detail (since
you read the APR page, you probably noticed the attributes were not
the same as for JSSE, as they resemble the ones used for mod_ssl) ;)

--
xxxxxxxxxxxxxxxxxxxxxxxxx
Rémy Maucherat
Developer & Consultant
JBoss Group (Europe) SàRL
xxxxxxxxxxxxxxxxxxxxxxxxx

---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Reply via email to