You are viewing a plain text version of this content. The canonical link for it is here.
Posted to users@tomcat.apache.org by Ben Densmore <bd...@gmail.com> on 2008/08/01 18:09:08 UTC
Changing SSL Certificates
I have a Tomcat dev server that I had originally used a self signed ssl
certificate with. I now need to use a trusted certificate but when I
imported it and changed the server.xml file to use this new certificate
TomCat blew up.
Does anyone have the steps involved in changing over to a new ssl
certificate?
Thanks,
Ben
Re: Changing SSL Certificates
Posted by Mark Thomas <ma...@apache.org>.
Ben Densmore wrote:
> Is there anyone that might be willing to help me get this fixed? I've tried
> following the docs from TomCat and am now getting this error.
>
> keytool error: java.lang.Exception: Public keys in reply and keystore don't
> match
>
> We'd be willing to pay, i just need to get this fixed.
Do you have the original certificate request you sent to trustwave and the
certificate (and any other files) they provided you with in response?
If you do, what commands did you use to create the certificate request?
Mark
---------------------------------------------------------------------
To start a new topic, e-mail: users@tomcat.apache.org
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org
Re: Changing SSL Certificates
Posted by Ben Densmore <bd...@gmail.com>.
Is there anyone that might be willing to help me get this fixed? I've tried
following the docs from TomCat and am now getting this error.
keytool error: java.lang.Exception: Public keys in reply and keystore don't
match
We'd be willing to pay, i just need to get this fixed.
Thanks,
Ben
On Fri, Aug 1, 2008 at 6:06 PM, Hassan Schroeder <hassan.schroeder@gmail.com
> wrote:
> On Fri, Aug 1, 2008 at 2:54 PM, Ben Densmore <bd...@gmail.com> wrote:
> > Tomcat version - 6.0.16
> > Error Message: java.io.FileNotFoundException:
> > /usr/local/apache-tomcat-6.0.16/webapps/ROOT/index.html (Too many open
> > files)
> > Vendor: Trustwave
>
> I can't imagine what the above has to do with setting up SSL, but...
>
> > I followed the instructions they have here:
> > https://www.securetrust.com/support/sslcertificates/install/tomcat
> >
> > but when I do I get an error that the keystore isn't valid.
>
> ..what happens when you follow the Tomcat directions? :-)
>
> --
> Hassan Schroeder ------------------------ hassan.schroeder@gmail.com
>
> ---------------------------------------------------------------------
> To start a new topic, e-mail: users@tomcat.apache.org
> To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
> For additional commands, e-mail: users-help@tomcat.apache.org
>
>
Re: Changing SSL Certificates
Posted by Hassan Schroeder <ha...@gmail.com>.
On Fri, Aug 1, 2008 at 2:54 PM, Ben Densmore <bd...@gmail.com> wrote:
> Tomcat version - 6.0.16
> Error Message: java.io.FileNotFoundException:
> /usr/local/apache-tomcat-6.0.16/webapps/ROOT/index.html (Too many open
> files)
> Vendor: Trustwave
I can't imagine what the above has to do with setting up SSL, but...
> I followed the instructions they have here:
> https://www.securetrust.com/support/sslcertificates/install/tomcat
>
> but when I do I get an error that the keystore isn't valid.
..what happens when you follow the Tomcat directions? :-)
--
Hassan Schroeder ------------------------ hassan.schroeder@gmail.com
---------------------------------------------------------------------
To start a new topic, e-mail: users@tomcat.apache.org
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org
Re: Changing SSL Certificates
Posted by Ben Densmore <bd...@gmail.com>.
Tomcat version - 6.0.16
Error Message: java.io.FileNotFoundException:
/usr/local/apache-tomcat-6.0.16/webapps/ROOT/index.html (Too many open
files)
Vendor: Trustwave
I followed the instructions they have here:
https://www.securetrust.com/support/sslcertificates/install/tomcat
but when I do I get an error that the keystore isn't valid.
Thanks,
Ben
On Fri, Aug 1, 2008 at 12:13 PM, Peter Crowther <Peter.Crowther@melandra.com
> wrote:
> Tomcat version?
> Error message (anything more than "blew up")?
> Vendor of new cert? Do you have to install a cert chain?
>
> - Peter
>
> > -----Original Message-----
> > From: Ben Densmore [mailto:bdensmore@gmail.com]
> > Sent: 01 August 2008 17:09
> > To: users@tomcat.apache.org
> > Subject: Changing SSL Certificates
> >
> > I have a Tomcat dev server that I had originally used a self
> > signed ssl
> > certificate with. I now need to use a trusted certificate but when I
> > imported it and changed the server.xml file to use this new
> > certificate
> > TomCat blew up.
> >
> > Does anyone have the steps involved in changing over to a new ssl
> > certificate?
> >
> > Thanks,
> > Ben
> >
>
> ---------------------------------------------------------------------
> To start a new topic, e-mail: users@tomcat.apache.org
> To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
> For additional commands, e-mail: users-help@tomcat.apache.org
>
>
RE: Changing SSL Certificates
Posted by "Radcliffe, William H." <Ra...@DOJ.STATE.WI.US>.
I've never done SSL with Tomcat, but setting up the certificates should be
close to or the same as Apache. In Apache you need the server certificate,
any intermediate certificates, and the private key. The following makes me
uneasy, but if you password protect your key, Apache won't start.
-- Bill
-----Original Message-----
From: Peter Crowther [mailto:Peter.Crowther@melandra.com]
Sent: Friday, August 01, 2008 11:13 AM
To: 'Tomcat Users List'
Subject: RE: Changing SSL Certificates
Tomcat version?
Error message (anything more than "blew up")?
Vendor of new cert? Do you have to install a cert chain?
- Peter
> -----Original Message-----
> From: Ben Densmore [mailto:bdensmore@gmail.com]
> Sent: 01 August 2008 17:09
> To: users@tomcat.apache.org
> Subject: Changing SSL Certificates
>
> I have a Tomcat dev server that I had originally used a self signed
> ssl certificate with. I now need to use a trusted certificate but when
> I imported it and changed the server.xml file to use this new
> certificate TomCat blew up.
>
> Does anyone have the steps involved in changing over to a new ssl
> certificate?
>
> Thanks,
> Ben
>
---------------------------------------------------------------------
To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail:
users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org
---------------------------------------------------------------------
To start a new topic, e-mail: users@tomcat.apache.org
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org
RE: Changing SSL Certificates
Posted by Peter Crowther <Pe...@melandra.com>.
Tomcat version?
Error message (anything more than "blew up")?
Vendor of new cert? Do you have to install a cert chain?
- Peter
> -----Original Message-----
> From: Ben Densmore [mailto:bdensmore@gmail.com]
> Sent: 01 August 2008 17:09
> To: users@tomcat.apache.org
> Subject: Changing SSL Certificates
>
> I have a Tomcat dev server that I had originally used a self
> signed ssl
> certificate with. I now need to use a trusted certificate but when I
> imported it and changed the server.xml file to use this new
> certificate
> TomCat blew up.
>
> Does anyone have the steps involved in changing over to a new ssl
> certificate?
>
> Thanks,
> Ben
>
---------------------------------------------------------------------
To start a new topic, e-mail: users@tomcat.apache.org
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org
Re: Changing SSL Certificates
Posted by Hassan Schroeder <ha...@gmail.com>.
On Fri, Aug 1, 2008 at 9:09 AM, Ben Densmore <bd...@gmail.com> wrote:
> Does anyone have the steps involved in changing over to a new ssl
> certificate?
<http://tomcat.apache.org/tomcat-6.0-doc/ssl-howto.html>
--
Hassan Schroeder ------------------------ hassan.schroeder@gmail.com
---------------------------------------------------------------------
To start a new topic, e-mail: users@tomcat.apache.org
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org