Re: RE Tomcat and SSL

Wed, 12 Apr 2006 05:30:14 -0700 

Hi Franck,

thank you for your hint. But I am not sure, which parameter is which file.

To make things clear, here my procedure:

------------------------------------------------------------------------
> openssl req -x509 -newkey rsa:512 -keyout ./demoCA/private/cakey.pem -out ./demoCA/cacert.pem -days 1095 

> openssl genrsa -out ./key.pem 512 -days 1095

> openssl req -new -key ./key.pem -out ./req.pem -days 1095

> openssl ca -in ./req.pem -out ./cert.pem  -days 1095

> chown -R root:root ./cert
> chmod -R 700 ./cert
then I cleaned cet.pem by hand (take out text before "-------BEGIN CERTIFICATE-----------" 

The final step:
../java/bin/keytool -import -keystore ../tomcat/conf/.keystore -file ./cert.pem -alias wt24ca 
----------------------------------------------------------------------
Setting up SSL is described in diffent documents so differenly, that it is hard to be sure of what to do. The above, I extraced from several descriptions. 

Could cou please tell me, which file from the above is used in server.xml?

Thanks a lot

Klaus





Franck Borel schrieb:



Hi,

I solved that problem. Now running in a new one:

I have changed the file server.xml and set port 8080 to 80.
I uncommented the SSL section and configured the port to 443. Now I expect Tomcat to run on port 80 (what is does), and that, when I call the same URL with "https", that it calls the same page with that security. 
But with https it states that it cannot open the page.

Your connector must look like this:
<Connector port="443" debug="0" scheme="https" secure="true" clientAuth="false" sslProtocol="TLS" keystoreFile="conf/.keystore" keystorePass="secret" truststoreFile="conf/cacerts"/> 


-- Franck


------------------------------------------------------------------------

---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]



--

*Klaus-F. Kaal*
Geschäftsführer

*TIMO/logic/ GmbH*
Singener Str. 42d
D-78256 Steisslingen

phone +49 7738 97096
fax +49 7738 97094
web www.timologic.com <http://www.timologic.com/>
mail [EMAIL PROTECTED] <mailto:[EMAIL PROTECTED]>

------------------------------------------------------------------------

*Das hat es bisher noch nicht gegeben:*

*WebTresor24* <http://www.webtresor24.de>
*
Das Online Backup mit dem innovativen Sorglos - Konzept

Wir sorgen dafür, dass Ihr Backup nie wieder vergessen wird!*

------------------------------------------------------------------------

*
*

Reply via email to