I created the certificate a windows csr. I did find OpenSSL on our server and from there we were able to create the right type of .pem file for Tomcat to use. Thanks for everyone's help.
Ron Boyer IT Director Information Technology Summit County, Utah Office: 435-336-3143 ________________________________ From: Mark Thomas <ma...@apache.org> Sent: Wednesday, October 9, 2024 10:48 AM To: users@tomcat.apache.org <users@tomcat.apache.org> Subject: Re: SSL on Tomcat 9 [You don't often get email from ma...@apache.org. Learn why this is important at https://aka.ms/LearnAboutSenderIdentification ] On 09/10/2024 07:47, Ron Boyer wrote: > hello, I am trying to renew the SSL certificate from a signing authority. I > am running Tomcat 9. I understand that I have to import PKCS #12 > certificate. I seem to be able to make one, but I don't think it is correct. > My signing authority, GoDaddy, will let me download a crt and pem file. From > the server.xml file I see there is only one entry that points to the keystore > of a PKCS #12 key. I don't know whether I need to import the certificate > with keytool or using the certificate snap-in with Windows Management > Console. Any advice? How did you create the private key (show us the command line if you can) and what format is the key in? If you followed an on-line guide (e.g. from GoDaddy) can you provide a reference to that? Why do you think what you are doing is incorrect? What is your TLS connector configuration (show use the XML but mask any sensitive information like passwords)? What do the logs show for that Connector when Tomcat starts? Mark --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
