You are viewing a plain text version of this content. The canonical link for it is here.
Posted to users@tomcat.apache.org by Carlton Whitmore <cw...@Advocacyinc.org> on 2011/02/25 18:24:06 UTC
Wildcard SSL import from IIS 6 to Tomcat 7?
I setup my SSL wildcard on IIS 6 and exported the cert file to some other IIS servers. Now I'd like to set it up on a Tomcat 7 server. This server already has a standard SSL cert running.
I tried these instructions, but couldn't get it working.
http://www.lazynetworkadmin.com/knowledgebase-mainmenu-6/2-windows/150-export-ssl-certificate-from-iis-and-import-into-tomcat
Here is the SSL section from my server.xml file:
<Connector port="8443" protocol="HTTP/1.1" SSLEnabled="true"
maxThreads="150" scheme="https" secure="true"
keystoreFile="c:\certs\disabilityrightstx.pfx" keystorePass="pass1"
clientAuth="false" sslProtocol="PKCS12"/>
Carlton.
RE: Wildcard SSL import from IIS 6 to Tomcat 7?
Posted by Carlton Whitmore <cw...@Advocacyinc.org>.
Flip,
That was the problem. Thanks.
________________________________________
From: Filip Hanik - Dev Lists [devlists@hanik.com]
Sent: Friday, February 25, 2011 1:03 PM
To: Tomcat Users List
Subject: Re: Wildcard SSL import from IIS 6 to Tomcat 7?
I would change
sslProtocol="PKCS12"
to
keystoreType="PKCS12"
On 02/25/2011 11:10 AM, Carlton Whitmore wrote:
> Filip,
> When I try to access https://www.disabilityrightstx.org:8443 I get the standard Page can't be displayed message.
>
> Here is what I found in the Catalina logs:
> Feb 25, 2011 9:53:00 AM org.apache.catalina.startup.Catalina start
> SEVERE: Catalina.start:
> LifecycleException: Protocol handler initialization failed: java.io.IOException: PKCS12 SSLContext not available
> at org.apache.catalina.connector.Connector.startInternal(Connector.java:868)
> at org.apache.catalina.util.LifecycleBase.start(LifecycleBase.java:138)
> at org.apache.catalina.core.StandardService.startInternal(StandardService.java:437)
> at org.apache.catalina.util.LifecycleBase.start(LifecycleBase.java:138)
> at org.apache.catalina.core.StandardServer.startInternal(StandardServer.java:648)
> at org.apache.catalina.util.LifecycleBase.start(LifecycleBase.java:138)
> at org.apache.catalina.startup.Catalina.start(Catalina.java:576)
> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
> at sun.reflect.NativeMethodAccessorImpl.invoke(Unknown Source)
> at sun.reflect.DelegatingMethodAccessorImpl.invoke(Unknown Source)
> at java.lang.reflect.Method.invoke(Unknown Source)
> at org.apache.catalina.startup.Bootstrap.start(Bootstrap.java:288)
> at org.apache.catalina.startup.Bootstrap.main(Bootstrap.java:415)
>
>
>
>
> -----Original Message-----
> From: Filip Hanik - Dev Lists [mailto:devlists@hanik.com]
> Sent: Friday, February 25, 2011 11:59 AM
> To: Tomcat Users List
> Subject: Re: Wildcard SSL import from IIS 6 to Tomcat 7?
>
> Define "not working". Do you get an error in the logs?
>
> Filip
>
> 'On 02/25/2011 10:24 AM, Carlton Whitmore wrote:
>
>> I setup my SSL wildcard on IIS 6 and exported the cert file to some other IIS servers. Now I'd like to set it up on a Tomcat 7 server. This server already has a standard SSL cert running.
>>
>> I tried these instructions, but couldn't get it working.
>>
>> http://www.lazynetworkadmin.com/knowledgebase-mainmenu-6/2-windows/150-export-ssl-certificate-from-iis-and-import-into-tomcat
>>
>> Here is the SSL section from my server.xml file:
>> <Connector port="8443" protocol="HTTP/1.1" SSLEnabled="true"
>> maxThreads="150" scheme="https" secure="true"
>> keystoreFile="c:\certs\disabilityrightstx.pfx" keystorePass="pass1"
>> clientAuth="false" sslProtocol="PKCS12"/>
>>
>>
>> Carlton.
>>
>>
>>
>>
>>
>>
>>
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
> For additional commands, e-mail: users-help@tomcat.apache.org
>
>
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
> For additional commands, e-mail: users-help@tomcat.apache.org
>
>
>
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org
Re: Wildcard SSL import from IIS 6 to Tomcat 7?
Posted by Filip Hanik - Dev Lists <de...@hanik.com>.
I would change
sslProtocol="PKCS12"
to
keystoreType="PKCS12"
On 02/25/2011 11:10 AM, Carlton Whitmore wrote:
> Filip,
> When I try to access https://www.disabilityrightstx.org:8443 I get the standard Page can't be displayed message.
>
> Here is what I found in the Catalina logs:
> Feb 25, 2011 9:53:00 AM org.apache.catalina.startup.Catalina start
> SEVERE: Catalina.start:
> LifecycleException: Protocol handler initialization failed: java.io.IOException: PKCS12 SSLContext not available
> at org.apache.catalina.connector.Connector.startInternal(Connector.java:868)
> at org.apache.catalina.util.LifecycleBase.start(LifecycleBase.java:138)
> at org.apache.catalina.core.StandardService.startInternal(StandardService.java:437)
> at org.apache.catalina.util.LifecycleBase.start(LifecycleBase.java:138)
> at org.apache.catalina.core.StandardServer.startInternal(StandardServer.java:648)
> at org.apache.catalina.util.LifecycleBase.start(LifecycleBase.java:138)
> at org.apache.catalina.startup.Catalina.start(Catalina.java:576)
> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
> at sun.reflect.NativeMethodAccessorImpl.invoke(Unknown Source)
> at sun.reflect.DelegatingMethodAccessorImpl.invoke(Unknown Source)
> at java.lang.reflect.Method.invoke(Unknown Source)
> at org.apache.catalina.startup.Bootstrap.start(Bootstrap.java:288)
> at org.apache.catalina.startup.Bootstrap.main(Bootstrap.java:415)
>
>
>
>
> -----Original Message-----
> From: Filip Hanik - Dev Lists [mailto:devlists@hanik.com]
> Sent: Friday, February 25, 2011 11:59 AM
> To: Tomcat Users List
> Subject: Re: Wildcard SSL import from IIS 6 to Tomcat 7?
>
> Define "not working". Do you get an error in the logs?
>
> Filip
>
> 'On 02/25/2011 10:24 AM, Carlton Whitmore wrote:
>
>> I setup my SSL wildcard on IIS 6 and exported the cert file to some other IIS servers. Now I'd like to set it up on a Tomcat 7 server. This server already has a standard SSL cert running.
>>
>> I tried these instructions, but couldn't get it working.
>>
>> http://www.lazynetworkadmin.com/knowledgebase-mainmenu-6/2-windows/150-export-ssl-certificate-from-iis-and-import-into-tomcat
>>
>> Here is the SSL section from my server.xml file:
>> <Connector port="8443" protocol="HTTP/1.1" SSLEnabled="true"
>> maxThreads="150" scheme="https" secure="true"
>> keystoreFile="c:\certs\disabilityrightstx.pfx" keystorePass="pass1"
>> clientAuth="false" sslProtocol="PKCS12"/>
>>
>>
>> Carlton.
>>
>>
>>
>>
>>
>>
>>
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
> For additional commands, e-mail: users-help@tomcat.apache.org
>
>
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
> For additional commands, e-mail: users-help@tomcat.apache.org
>
>
>
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org
RE: Wildcard SSL import from IIS 6 to Tomcat 7?
Posted by Carlton Whitmore <cw...@Advocacyinc.org>.
Filip,
When I try to access https://www.disabilityrightstx.org:8443 I get the standard Page can't be displayed message.
Here is what I found in the Catalina logs:
Feb 25, 2011 9:53:00 AM org.apache.catalina.startup.Catalina start
SEVERE: Catalina.start:
LifecycleException: Protocol handler initialization failed: java.io.IOException: PKCS12 SSLContext not available
at org.apache.catalina.connector.Connector.startInternal(Connector.java:868)
at org.apache.catalina.util.LifecycleBase.start(LifecycleBase.java:138)
at org.apache.catalina.core.StandardService.startInternal(StandardService.java:437)
at org.apache.catalina.util.LifecycleBase.start(LifecycleBase.java:138)
at org.apache.catalina.core.StandardServer.startInternal(StandardServer.java:648)
at org.apache.catalina.util.LifecycleBase.start(LifecycleBase.java:138)
at org.apache.catalina.startup.Catalina.start(Catalina.java:576)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(Unknown Source)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(Unknown Source)
at java.lang.reflect.Method.invoke(Unknown Source)
at org.apache.catalina.startup.Bootstrap.start(Bootstrap.java:288)
at org.apache.catalina.startup.Bootstrap.main(Bootstrap.java:415)
-----Original Message-----
From: Filip Hanik - Dev Lists [mailto:devlists@hanik.com]
Sent: Friday, February 25, 2011 11:59 AM
To: Tomcat Users List
Subject: Re: Wildcard SSL import from IIS 6 to Tomcat 7?
Define "not working". Do you get an error in the logs?
Filip
'On 02/25/2011 10:24 AM, Carlton Whitmore wrote:
> I setup my SSL wildcard on IIS 6 and exported the cert file to some other IIS servers. Now I'd like to set it up on a Tomcat 7 server. This server already has a standard SSL cert running.
>
> I tried these instructions, but couldn't get it working.
>
> http://www.lazynetworkadmin.com/knowledgebase-mainmenu-6/2-windows/150-export-ssl-certificate-from-iis-and-import-into-tomcat
>
> Here is the SSL section from my server.xml file:
> <Connector port="8443" protocol="HTTP/1.1" SSLEnabled="true"
> maxThreads="150" scheme="https" secure="true"
> keystoreFile="c:\certs\disabilityrightstx.pfx" keystorePass="pass1"
> clientAuth="false" sslProtocol="PKCS12"/>
>
>
> Carlton.
>
>
>
>
>
>
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org
Re: Wildcard SSL import from IIS 6 to Tomcat 7?
Posted by Filip Hanik - Dev Lists <de...@hanik.com>.
Define "not working". Do you get an error in the logs?
Filip
'On 02/25/2011 10:24 AM, Carlton Whitmore wrote:
> I setup my SSL wildcard on IIS 6 and exported the cert file to some other IIS servers. Now I'd like to set it up on a Tomcat 7 server. This server already has a standard SSL cert running.
>
> I tried these instructions, but couldn't get it working.
>
> http://www.lazynetworkadmin.com/knowledgebase-mainmenu-6/2-windows/150-export-ssl-certificate-from-iis-and-import-into-tomcat
>
> Here is the SSL section from my server.xml file:
> <Connector port="8443" protocol="HTTP/1.1" SSLEnabled="true"
> maxThreads="150" scheme="https" secure="true"
> keystoreFile="c:\certs\disabilityrightstx.pfx" keystorePass="pass1"
> clientAuth="false" sslProtocol="PKCS12"/>
>
>
> Carlton.
>
>
>
>
>
>
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org