Tomcat 5.5.26 SSL Issue - Windows 2003

[Sean Bababeigi <se...@senecac.on.ca>]

Hello Experts,

We are trying to enable the SSL on a stand-alone tomcat installation on 
Win2003. Non-SSL has been working just fine. We have the certificate 
created and signed.
Below you can find the server.xml. Tomcat starts with no errors, opens 
the sockets on port 443, accepts the connections fine but no SSL 
communication. Also no errors in the logs.
We had the same problem with 5.5.25, so we upgraded to 5.5.26 but still 
the same thing.

We have been using Tomcat on Linux and Unix boxes for ages and never had 
problem. The task of enabling SSL on tomcat has always been a trivial 
task on Linux and Unix but on Windows we are banging our head on the wall.
we have to use Tomcat on Windows due to some other software requirements.
There are no errors in the log or complaint about the keystore file or 
password or anything SSL related. Even if we change the certificate path 
or password to something invalid (ot if we take them out in the config) 
still it doesn't complain and the same problem.

Are we missing something?

I would appreciate any help in advance.
Thanks,
Sean

----------
JVM: jdk1.6.0_03 \jre\bin\server\jvm.dll
OS: Win 2003 (up-to-date)
Tomcat: 5.5.26
-------------

telnet localhost 80 (connects)
telnet localhost 443 (connects)

http://localhost (works)
http://loalhost:443 (works but with no SSL)
https://localhost (doesn't work)
https://localhost:443 (obviously doesn't work)


---------- server.xml --------------
<?xml version="1.0"?>

<Server port="8005" shutdown="SHUTDOWN" debug="3">

  <Listener className="org.apache.catalina.core.AprLifecycleListener" />
  <Listener 
className="org.apache.catalina.mbeans.ServerLifecycleListener" />
  <Listener 
className="org.apache.catalina.mbeans.GlobalResourcesLifecycleListener" />
  <Listener 
className="org.apache.catalina.storeconfig.StoreConfigLifecycleListener"/>

  <Service name="Catalina">

    <Connector
                port="80"  maxHttpHeaderSize="8192"
               maxThreads="150" minSpareThreads="25" maxSpareThreads="75"
               enableLookups="false" redirectPort="443" acceptCount="100"
               connectionTimeout="20000" disableUploadTimeout="true" />

    <Connector port="443" maxHttpHeaderSize="8192"
               maxThreads="150" minSpareThreads="25" maxSpareThreads="75"
               keystoreFile="${catalina.home}/keys/server.keystore"
               keystorePass="mypassword"             
               enableLookups="false" disableUploadTimeout="true"
               acceptCount="100" debug="0" scheme="https" secure="true"
               connectionTimeout="20000"
               clientAuth="false" sslProtocol="TLS" />

    <Engine name="Catalina" defaultHost="localhost">

      <Host name="localhost" appBase="webapps"
       unpackWARs="false" autoDeploy="true"
       xmlValidation="false" xmlNamespaceAware="false">

      </Host>

    </Engine>

  </Service>

</Server>
---------- END server.xml --------------

-- 
Sean
Technical Support Specialist

Re: Tomcat 5.5.26 SSL Issue - Windows 2003

[NBW <em...@gmail.com>]

It's also going to work a lot slower. APR is the way to go on Windows if you
need SSL and care about performance.

On Wed, Apr 16, 2008 at 2:12 PM, Sean Bababeigi <
sean.bababeigi@senecac.on.ca> wrote:

> Thank you so much Charles. I renamed the file tcnative-1.dll and it works
> fine.
>
> Thanks again.
>
> Sean Technical Support Specialist
>
>
>
>
>
> Caldarale, Charles R wrote:
>
> > From: Sean Bababeigi [mailto:sean.bababeigi@senecac.on.ca] Subject:
> > > Tomcat 5.5.26 SSL Issue - Windows 2003
> > >
> > > We are trying to enable the SSL on a stand-alone tomcat installation
> > > on Win2003.
> > >
> > >
> >
> > Do you have APR installed with Tomcat on your Windows box?  If so, the
> > SSL configuration is very different:
> > http://tomcat.apache.org/tomcat-5.5-doc/apr.html#HTTPS
> >
> > If you want to use the JCE version of SSL, delete tcnative-1.dll from
> > Tomcat's bin directory.
> >
> >  - Chuck
> >
> >
> >
>

Re: Tomcat 5.5.26 SSL Issue - Windows 2003

[Sean Bababeigi <se...@senecac.on.ca>]

Thank you so much Charles. I renamed the file tcnative-1.dll and it 
works fine.

Thanks again.

Sean 
Technical Support Specialist




Caldarale, Charles R wrote:
>> From: Sean Bababeigi [mailto:sean.bababeigi@senecac.on.ca] 
>> Subject: Tomcat 5.5.26 SSL Issue - Windows 2003
>>
>> We are trying to enable the SSL on a stand-alone tomcat 
>> installation on Win2003.
>>     
>
> Do you have APR installed with Tomcat on your Windows box?  If so, the
> SSL configuration is very different:
> http://tomcat.apache.org/tomcat-5.5-doc/apr.html#HTTPS
>
> If you want to use the JCE version of SSL, delete tcnative-1.dll from
> Tomcat's bin directory.
>
>  - Chuck
>
>   

RE: Tomcat 5.5.26 SSL Issue - Windows 2003

["Caldarale, Charles R" <Ch...@unisys.com>]

> From: Sean Bababeigi [mailto:sean.bababeigi@senecac.on.ca] 
> Subject: Tomcat 5.5.26 SSL Issue - Windows 2003
> 
> We are trying to enable the SSL on a stand-alone tomcat 
> installation on Win2003.

Do you have APR installed with Tomcat on your Windows box?  If so, the
SSL configuration is very different:
http://tomcat.apache.org/tomcat-5.5-doc/apr.html#HTTPS

If you want to use the JCE version of SSL, delete tcnative-1.dll from
Tomcat's bin directory.

 - Chuck


THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY
MATERIAL and is thus for use only by the intended recipient. If you
received this in error, please contact the sender and delete the e-mail
and its attachments from all computers.

---------------------------------------------------------------------
To start a new topic, e-mail: users@tomcat.apache.org
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org