Win a copy of Machine Learning Systems: Designs that scale this week in the Scala forum
or Xamarin in Action: Creating native cross-platform mobile apps in the Android forum!
  • Post Reply Bookmark Topic Watch Topic
  • New Topic

Issue replacing certificates in Tomcat 6  RSS feed

 
Greenhorn
Posts: 2
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Hello.  I've struggled finding a solution for this issue.  I have a number of Tomcat 6 servers.  Many of them need new certificates.  I've made new cert/key pairs, and set them up in the server.xml file.  I restart the tomcat service, then try to connect.  The browser just spins, and never connects.  No cert error, no nothing. Tomcat is running.  It's just not responding.  If I put back the original cert/key, it works fine again.  Any help would be appreciated. 
 
Tim Barnby
Greenhorn
Posts: 2
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
I forgot to mention a few details. 

I generate the key/cert with the following command:
openssl req -x509 -nodes -sha256 -days 365 -newkey rsa:2048 -keyout NewTomcat.key -out NewTomcat.crt

The Connector looks like this:
   protocol="org.apache.coyote.http11.Http11AprProtocol"
               enableLookups="false" disableUploadTimeout="true"
               acceptCount="100" scheme="https" secure="true"
               SSLEnabled="true"
               SSLProtocol="all"
               SSLHonorCipherOrder="On"
               SSLCipherSuite="HIGH:!ADH:!SSLv2"
               SSLCertificateFile="${catalina.base}/conf/OldTomcat.crt"
               SSLCertificateKeyFile="${catalina.base}/conf/OldTomcat.key" />
 
The fastest and most reliable components of any system are those that are not there. Tiny ad:
free 1 hour java lesson
https://coderanch.com/t/695988/free-hour-java-lesson
  • Post Reply Bookmark Topic Watch Topic
  • New Topic
Boost this thread!