Thank you Mark,
I edited the connector with the information for the new certificate I just
installed (not the old self signed one) and now I am seeing this error:
(I have attached the modified server.xml and the output for tomcat key
entry cert below)
_______________________________________________________________________________
Dec 12, 2011 3:38:24 PM org.apache.coyote.http11.Http11Protocol init
INFO: Initializing Coyote HTTP/1.1 on http-18080
Dec 12, 2011 3:38:24 PM org.apache.coyote.http11.Http11Protocol init
SEVERE: Error initializing endpoint
java.io.IOException: Alias name tomcat does not identify a key entry
at
org.apache.tomcat.util.net.jsse.JSSESocketFactory.getKeyManagers(JSSESocketFactory.java:546)
at
org.apache.tomcat.util.net.jsse.JSSESocketFactory.init(JSSESocketFactory.java:481)
at
org.apache.tomcat.util.net.jsse.JSSESocketFactory.createSocket(JSSESocketFactory.java:156)
at
org.apache.tomcat.util.net.JIoEndpoint.init(JIoEndpoint.java:538)
at
org.apache.coyote.http11.Http11Protocol.init(Http11Protocol.java:176)
at
org.apache.catalina.connector.Connector.initialize(Connector.java:1022)
at
org.apache.catalina.core.StandardService.initialize(StandardService.java:703)
at
org.apache.catalina.core.StandardServer.initialize(StandardServer.java:838)
at org.apache.catalina.startup.Catalina.load(Catalina.java:538)
at org.apache.catalina.startup.Catalina.load(Catalina.java:562)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(Unknown Source)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(Unknown Source)
at java.lang.reflect.Method.invoke(Unknown Source)
at org.apache.catalina.startup.Bootstrap.load(Bootstrap.java:261)
at org.apache.catalina.startup.Bootstrap.main(Bootstrap.java:413)
Dec 12, 2011 3:38:24 PM org.apache.catalina.core.StandardService
initialize
SEVERE: Failed to initialize connector [Connector[HTTP/1.1-8443]]
LifecycleException: Protocol handler initialization failed:
java.io.IOException: Alias name tomcat does not identify a key entry
at
org.apache.catalina.connector.Connector.initialize(Connector.java:1024)
at
org.apache.catalina.core.StandardService.initialize(StandardService.java:703)
at
org.apache.catalina.core.StandardServer.initialize(StandardServer.java:838)
at org.apache.catalina.startup.Catalina.load(Catalina.java:538)
at org.apache.catalina.startup.Catalina.load(Catalina.java:562)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(Unknown Source)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(Unknown Source)
at java.lang.reflect.Method.invoke(Unknown Source)
at org.apache.catalina.startup.Bootstrap.load(Bootstrap.java:261)
at org.apache.catalina.startup.Bootstrap.main(Bootstrap.java:413)
_______________________________________________________________________________
F:\Serena\Dimensions 2009 R2\Common Tools\jre\6.0\bin>keytool -list -v
-keystore wcmdev-ssl.jks -alias tomcat
Enter keystore password:
Alias name: tomcat
Creation date: Nov 10, 2011
Entry type: trustedCertEntry
Owner: CN=wcmdev.nexweb.us, OU=USN, OU=PKI, OU=DoD, O=U.S. Government,
C=US
_______________________________________________________________________________
<Server port="8405" shutdown="Shutdown.SerenaCommonTomcat">
<!-- <Listener
className="org.apache.catalina.core.AprLifecycleListener" SSLEngine="on"
/> -->
<Listener className="org.apache.catalina.core.JasperListener"/>
<Listener
className="org.apache.catalina.mbeans.ServerLifecycleListener"/>
<Listener
className="org.apache.catalina.mbeans.GlobalResourcesLifecycleListener"/>
<GlobalNamingResources>
<!-- Editable user database that can also be used by
UserDatabaseRealm to authenticate users
-->
<Resource name="UserDatabase" auth="Container"
type="org.apache.catalina.UserDatabase"
description="User database that can be updated and saved"
factory="org.apache.catalina.users.MemoryUserDatabaseFactory"
pathname="conf/tomcat-users.xml" />
</GlobalNamingResources>
<Service name="Catalina">
<Connector connectionTimeout="20000" port="18080"
protocol="HTTP/1.1" redirectPort="8443" server="Unknown Web Server/1.0"/>
<!-- Define a SSL HTTP/1.1 Connector on port 8443, using only
128-bit+ encryption (remove ciphers attribute if not needed). -->
<!-- <Connector port="8443" protocol="HTTP/1.1" SSLEnabled="true"
maxThreads="150" scheme="https" secure="true" clientAuth="false"
sslProtocol="TLS" ciphers="TLS_DHE_RSA_WITH_AES_128_CBC_SHA,
SSL_RSA_WITH_RC4_128_MD5, SSL_RSA_WITH_RC4_128_SHA,
TLS_RSA_WITH_AES_128_CBC_SHA, SSL_RSA_WITH 3DES_EDE_CBC_SHA"
server="Unknown Web Server/1.0"/> -->
<Connector SSLEnabled="true" acceptCount="100" clientAuth="false"
disableUploadTimeout="true" enableLookups="false" keyAlias="tomcat"
keystoreFile="conf/wcmdev-ssl.jks" keystorePass="****"
maxHttpHeaderSize="8192" maxSpareThreads="75" maxThreads="150"
minSpareThreads="25" port="8443" scheme="https" secure="true"
sslProtocol="TLS" strategy="ms" truststoreFile="conf/wcmdev-ssl.jks"
truststorePass="****"/>
<Connector SSLEnabled="true" acceptCount="100" clientAuth="true"
disableUploadTimeout="true" enableLookups="false" keyAlias="tomcat"
keystoreFile="conf/wcmdev-ssl.jks" keystorePass="****"
maxHttpHeaderSize="8192" maxSpareThreads="75" maxThreads="150"
minSpareThreads="25" port="8543" scheme="https" secure="true"
sslProtocol="TLS" strategy="ms" truststoreFile="conf/wcmdev-ssl.jks"
truststorePass="****"/>
<!-- Define an AJP 1.3 Connector on port 8409. -->
<Connector port="8409" protocol="AJP/1.3" redirectPort="8443"
server="Unknown Web Server/1.0"/>
<Engine defaultHost="localhost" name="Catalina">
<!-- This Realm uses the UserDatabase configured in the global
JNDI
resources under the key "UserDatabase". Any edits
that are performed against this UserDatabase are immediately
available for use by the Realm. -->
<Realm className="org.apache.catalina.realm.UserDatabaseRealm"
resourceName="UserDatabase"/>
<Host appBase="webapps" autoDeploy="true" name="localhost"
unpackWARs="true" xmlNamespaceAware="false" xmlValidation="false"/>
</Engine>
</Service>
</Server>
Thanks,
Justin
From: Mark Thomas <ma...@apache.org>
To: Tomcat Users List <users@tomcat.apache.org>
Date: 12/12/2011 03:29 PM
Subject: Re: Tomcat crashes after startup
On 12/12/2011 20:20, Justin Larose wrote:
> Group,
>
> Can anyone help me with this error below from the catalina.log?
> I have attached my server.xml as well. I have done some searches on the
> internet and cannot find much on this error.
> ________________________________________________
> SEVERE: Error initializing endpoint
> java.io.IOException: AnyCert TrustManagerFactory not available
Seems pretty clear to me.
> <Connector ... port="8543" ... truststoreAlgorithm="AnyCert" .../>
Fix your broken connector configuration or provide a JSSE implementation
that includes this custom truststoreAlgorithm.
Mark
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org
******************************************************************************
This email and any files transmitted with it are intended solely for
the use of the individual or agency to whom they are addressed.
If you have received this email in error please notify the Navy
Exchange Service Command e-mail administrator. This footnote
also confirms that this email message has been scanned for the
presence of computer viruses.
Thank You!
******************************************************************************
