-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Venkataraman,
On 8/2/18 12:14 PM, Venkataraman Srinivasan wrote: > Chris, > > Thanks for your reply. I will implement your recommendations in my > next iterations. > > Currently I did as below. > > I copied the keystore file as /home/apexadmin/.keystore > > and made below entry in server.xml What version of Tomcat are you using? Which part of the user guide are you reading? I just want to make sure you are following the right guide for the right version. > <Connector port="8080" > protocol="org.apache.coyote.http11.Http11NioProtocol" > maxThreads="200" redirectPort="8443" scheme="https" > <Certificate > certificateFile="/home/apexadmin/.keystore" keystorePass="changeit" > type="RSA" clientAuth="false" SSLEnabled="true" sslProtocol="TLS" >> > </Certificate> </Connector> You will need to set a few more attributes on the <Connector>: SSLEnabled="true" secure="true" The next part depends upon your Tomcat version. > Opened the port 8443 and recycled tomcat. The <Connector> defined above is listening on port 8080. That is unusual; most people would expect port 8080 to be a plaintext HTTP port, while port 8443 would be the non-privileged HTTPS port. Especially for testing, consider leaving the <Connector> for port 8080 as it was originally defined (without HTTPS) and configure a second <Connector> for HTTPS on port 8443. - -chris -----BEGIN PGP SIGNATURE----- Comment: GPGTools - http://gpgtools.org Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/ iQIzBAEBCAAdFiEEMmKgYcQvxMe7tcJcHPApP6U8pFgFAltjNNYACgkQHPApP6U8 pFi2UQ//SPU5itX1zh/lV/ICZYTOwiSSeF8EQfxWK1bZ9jCx3Pk44AMBRMRQqjl2 HMKRH/LsSMQp5iwtVBFKbjZyjG8btNMnmREUjFkMJHoFUh1IK0WVqybpeUSnl2BH +TdS6Z9twZd5q9/UybsJZScdgfV9IFECAM9xmG21ty92+xBqkbeSPUc62gf/A783 4P6yAYLIM3ctMHIzjwTJQ78vxTxLjsfrXvQaIC/dGefrKM6dcpxklQ/me4JNp6Lu GajNkuEhm20u8P172rVFdqr4NgdGlLd6UP3XXeRl1BNnCvvAI9B/HsYQ1ZOZ1pDe Zh3Jjamdx8neCBoZBCB7Pg/BmyuJ3RQRkA2w4APIMxoY7Bw0aYT2JpZdQqUaLFN+ Omzqf4pjpyFfRYlyhsTmbFviqbaIT4+XJ+SZPt4TYUuqawGp7vRJOTaQwfyJfJq+ he0XNEJWNGOzPjcdyuoJevjLONM0h7fenTAfZUUTkzmLxkMoRMSO9sIkQy46f4Z7 vG7x3MdSvrJKgWEbUSKjsCvtuYfCATf7bPk+1KJQUTMiSmk/E8OVq6q9BrcOVl1Z NXWPHOT3rN0JBtBbZNzmBPz3yYywy5zKD6FTeBwbQDn2Z+KInfMOT7+40954PUXI j4b4vEL1H0hunoV9hRKUHpeQbLOumITocQ6Wzd9vmo6qA1tys2U= =lTPy -----END PGP SIGNATURE----- --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
