You are viewing a plain text version of this content. The canonical link for it is here.
Posted to users@tomcat.apache.org by "David M. Holmes" <da...@yahoo.com> on 2000/08/16 22:05:53 UTC

Re: SSL working, but how to use a certificate? (IBM HTTP Server)

Similar question, but using SSL in the IBM HTTP Server? Has anyone used SSL with this server?

<Dave/>

--- Ken <ka...@pacific.net> wrote:
> SSL on Tomcat instructions:
> 
> 1. Download 3.2b source version and build and install with all the
> prerequisites in the README file. Make sure tomcat is working before
> continuing.
> 2. Download the jsse from sun and install the jars in your lib/ext dir
> ($JAVA_HOME/jre/lib/ext)
> 3. Edit server.xml in TOMCAT_HOME/conf and uncomment the ssl portion.
> Also - follow the instructions in the file to activate SSL. Generate the
> key etc...Restart Tomcat. If you don't get any errors, visit
> https://www.yourdomain.com:8443/examples/servlets/ and you should get an
> SSL page(with a warning about the CA).
> 
> 4. Here is where I am. It works with the test certificate, signed by
> me... with a warning in the browser. 
> 
> BUT now what? I need to use real certificates and keyfiles, signed by
> verisign or thawte.
> Where do I put the certificate and keyfiles? 
> HELP!
> 
> Thanks,
> 
> -Ken
> 
> 
> 
> Sameer Yami wrote:
> > 
> > Hi,
> > I am trying to do precisely what you have done. If you do not mind, can you
> > tell me the way you have incorporated SSL in tomcat?
> > 
> > regards
> > Sameer Yami
> > 
> > >From: Ken <ka...@pacific.net>
> > >Reply-To: tomcat-user@jakarta.apache.org
> > >To: "tomcat-user@jakarta.apache.org" <to...@jakarta.apache.org>
> > >Subject: SSL working, but how to use a certificate?
> > >Date: Tue, 15 Aug 2000 14:07:34 -0700
> > >
> > >Thanks for all of your help.
> > >Tomcat is now running SSL in standalone mode and talking nicely with
> > >netscape and IE.
> > >
> > >Next, I'd like to make this function in a useful way!
> > >
> > >How do I use an existing SSL certificate and private keyfile in tomcat?
> > >I need to be able to either request new certificates by generating csr's
> > >like we do with c2net's apache stronghold - that I can plug into tomcat
> > >for specific domains, or import existing certificates.
> > >
> > >I am able to use keytool to import a certificate file, but I don't know
> > >where to put the private key??
> > >Tomcat complains "IOException reading request, ignored -
> > >javax.net.ssl.SSLException: no cipher suites in common" and Netscape
> > >says it "can't communicate securely."
> > >
> > >I basically understand how keytool works, but I must be missing
> > >something bigger. A point toward the right documentation would be great.
> > >
> > >Thanks,
> > >-Ken


__________________________________________________
Do You Yahoo!?
Send instant messages & get email alerts with Yahoo! Messenger.
http://im.yahoo.com/