You are viewing a plain text version of this content. The canonical link for it is here.
Posted to users@tomcat.apache.org by Jeffrey Trimble <jt...@cc.ysu.edu> on 2004/11/17 20:29:16 UTC
SSL and server.xml
I'm running Tomcat 5.0.27 and am having a heck of time getting a connection
with
port 8443.
My firewall has 8000-8999 open.
Here is snipet from my server.xml regarding the connector for port
8443. Is there something
I don't see?
<Connector acceptCount="100" enableLookups="true"
keystoreFile="/home/dspace/.keystore" keystorePass="changeit"
port="8443" scheme="https" secure="true"
sslProtocol="TLS" clientauth="false"
keypass="changeit" keystore="/home/dspace/.keystore"
keytype="JKS" protocol="TLS">
<Factory className="org.apache.coyote.tomcat5.CoyoteServerSocketFactory"/>
</Connector>
I am not able to https://localhost:8443 at all. Dead
Any suggestions for me to check out?
TIA,
Jeffrey A. Trimble
Systems/Catalog Librarian
Youngstown State University
Youngstown, OH
jtrimble@cc.ysu.edu
(330) 941-2483
---------------------------------------------------------------------
To unsubscribe, e-mail: tomcat-user-unsubscribe@jakarta.apache.org
For additional commands, e-mail: tomcat-user-help@jakarta.apache.org
Re: SSL and server.xml
Posted by Oliver Zeigermann <ol...@gmail.com>.
With 5.0.28 this works fine for me:
<Connector port="8443"
maxThreads="150" minSpareThreads="25" maxSpareThreads="75"
enableLookups="false" disableUploadTimeout="true"
acceptCount="100" debug="0" scheme="https" secure="true"
clientAuth="false" sslProtocol="TLS"
keystoreFile="C:\Dokumente und Einstellungen\Olli\.keystore.nix"
keystorePass="xxx" />
What is your factory setting for?
Make sure the request actually reaches Tomcat. Maybe letting something
else (like the non-https connector that usually listens to port 8080)
listen and see if it works.
Oliver
On Wed, 17 Nov 2004 14:29:16 -0500, Jeffrey Trimble <jt...@cc.ysu.edu> wrote:
> I'm running Tomcat 5.0.27 and am having a heck of time getting a connection
> with
> port 8443.
>
> My firewall has 8000-8999 open.
>
> Here is snipet from my server.xml regarding the connector for port
> 8443. Is there something
> I don't see?
>
> <Connector acceptCount="100" enableLookups="true"
> keystoreFile="/home/dspace/.keystore" keystorePass="changeit"
> port="8443" scheme="https" secure="true"
> sslProtocol="TLS" clientauth="false"
> keypass="changeit" keystore="/home/dspace/.keystore"
> keytype="JKS" protocol="TLS">
> <Factory className="org.apache.coyote.tomcat5.CoyoteServerSocketFactory"/>
> </Connector>
>
> I am not able to https://localhost:8443 at all. Dead
>
> Any suggestions for me to check out?
>
> TIA,
>
> Jeffrey A. Trimble
> Systems/Catalog Librarian
> Youngstown State University
> Youngstown, OH
> jtrimble@cc.ysu.edu
> (330) 941-2483
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: tomcat-user-unsubscribe@jakarta.apache.org
> For additional commands, e-mail: tomcat-user-help@jakarta.apache.org
>
>
---------------------------------------------------------------------
To unsubscribe, e-mail: tomcat-user-unsubscribe@jakarta.apache.org
For additional commands, e-mail: tomcat-user-help@jakarta.apache.org
Re: SSL and server.xml
Posted by bi...@tcs.com.
I too had bad time with this implementation because of fact I mis
spelled keystore as keystores
what i see in your server.xml is sslProtocal is that required ?
secondly i think you need to give the name of keystore file not just
.keystore
check snippet of my server.xml
and compare
<Connector className="org.apache.coyote.tomcat4.CoyoteConnector"
port="8443" minProcessors="5" maxProcessors="75"
enableLookups="true"
acceptCount="100" debug="0" scheme="https" secure="true"
useURIValidationHack="false" disableUploadTimeout="true">
<Factory
className="org.apache.coyote.tomcat4.CoyoteServerSocketFactory"
clientAuth="false"
keystoreFile="c:\birendar\mykey.keystore" keystorePass="changeit"
protocol="TLS" />
</Connector>
see it this helps you .
Birendar Singh Waldiya
Tata Consultancy Services Limited
Mailto: birendar.waldiya@tcs.com
Website: http://www.tcs.com
Jeffrey Trimble <jt...@cc.ysu.edu>
11/18/2004 12:59 AM
Please respond to
"Tomcat Users List" <to...@jakarta.apache.org>
To
tomcat-user@jakarta.apache.org
cc
Subject
SSL and server.xml
I'm running Tomcat 5.0.27 and am having a heck of time getting a
connection
with
port 8443.
My firewall has 8000-8999 open.
Here is snipet from my server.xml regarding the connector for port
8443. Is there something
I don't see?
<Connector acceptCount="100" enableLookups="true"
keystoreFile="/home/dspace/.keystore" keystorePass="changeit"
port="8443" scheme="https" secure="true"
sslProtocol="TLS" clientauth="false"
keypass="changeit" keystore="/home/dspace/.keystore"
keytype="JKS" protocol="TLS">
<Factory
className="org.apache.coyote.tomcat5.CoyoteServerSocketFactory"/>
</Connector>
I am not able to https://localhost:8443 at all. Dead
Any suggestions for me to check out?
TIA,
Jeffrey A. Trimble
Systems/Catalog Librarian
Youngstown State University
Youngstown, OH
jtrimble@cc.ysu.edu
(330) 941-2483
---------------------------------------------------------------------
To unsubscribe, e-mail: tomcat-user-unsubscribe@jakarta.apache.org
For additional commands, e-mail: tomcat-user-help@jakarta.apache.org
ForwardSourceID:NT00004276
DISCLAIMER: The information contained in this message is intended only and solely for the addressed individual or entity indicated in this message and for the exclusive use of the said addressed individual or entity indicated in this message (or responsible for delivery of the message to such person) and may contain legally privileged and confidential information belonging to Tata Consultancy Services Limited. It must not be printed, read, copied, disclosed, forwarded, distributed or used (in whatsoever manner) by any person other than the addressee. Unauthorized use, disclosure or copying is strictly prohibited and may constitute unlawful act and can possibly attract legal action, civil and/or criminal. The contents of this message need not necessarily reflect or endorse the views of Tata Consultancy Services limited on any subject matter.
Any action taken or omitted to be taken based on this message is entirely at your risk and neither the originator of this message nor Tata Consultancy Services Limited takes any responsibility or liability towards the same. Opinions, conclusions and any other information contained in this message that do not relate to the official business of Tata Consultancy Services limited shall be understood as neither given nor endorsed by Tata Consultancy Services Limited or any affiliate of Tata Consultancy Services Limited. If you have received this message in error, you should destroy this message and may please notify the sender by e-mail.
Thank you.