Veni,

On 12/23/22 12:16, Janardhanan, Veni wrote:
I’ve a self-signed certificate installed on Tomcat 9 which works fine. This is 
a Crystal Server SAP BO BI 4.3 box.
To make it secure I installed our CA signed certificate. After a restart I 
brought Tomcat up, the logs show ‘Invalid Keystore format’ error.

Below is the config from server.xml.

<Connector port="8443" protocol="org.apache.coyote.http11.Http11NioProtocol"
                                            compressionMinSize="2048" URIEncoding="UTF-8" 
compression="on"
                                            
certificateKeyAlias="xxxxxxxx.corp.xxxxxxx.com"
                              
compressableMimeType="text/html,text/xml,text/plain,text/css,text/javascript,text/json,application/javascript,application/json"
             maxThreads="200" scheme="https" secure="true" SSLEnabled="true">
         <SSLHostConfig>
             <Certificate certificateKeystoreFile="C:/SSL/certnew_pfx.pfx"
                                                           
certificateKeystorePassword="[secret]" keystoreType="PKCS12"
                          type="RSA" />
         </SSLHostConfig>
     </Connector>

Please suggest. Am stuck at this point unable to proceed further, any 
hints/thoughts highly appreciated!

What does this display:

C:> keytool -list -keystore C:\SSL\certnew_pfx.pfx -storetype PKCS12

?

-chris

---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org

Reply via email to