Win a copy of Kotlin in Action this week in the Kotlin forum!
  • Post Reply Bookmark Topic Watch Topic
  • New Topic

Issue replacing certificates in Tomcat 6  RSS feed

 
Tim Barnby
Greenhorn
Posts: 2
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Hello.  I've struggled finding a solution for this issue.  I have a number of Tomcat 6 servers.  Many of them need new certificates.  I've made new cert/key pairs, and set them up in the server.xml file.  I restart the tomcat service, then try to connect.  The browser just spins, and never connects.  No cert error, no nothing. Tomcat is running.  It's just not responding.  If I put back the original cert/key, it works fine again.  Any help would be appreciated. 
 
Tim Barnby
Greenhorn
Posts: 2
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
I forgot to mention a few details. 

I generate the key/cert with the following command:
openssl req -x509 -nodes -sha256 -days 365 -newkey rsa:2048 -keyout NewTomcat.key -out NewTomcat.crt

The Connector looks like this:
   protocol="org.apache.coyote.http11.Http11AprProtocol"
               enableLookups="false" disableUploadTimeout="true"
               acceptCount="100" scheme="https" secure="true"
               SSLEnabled="true"
               SSLProtocol="all"
               SSLHonorCipherOrder="On"
               SSLCipherSuite="HIGH:!ADH:!SSLv2"
               SSLCertificateFile="${catalina.base}/conf/OldTomcat.crt"
               SSLCertificateKeyFile="${catalina.base}/conf/OldTomcat.key" />
 
It is sorta covered in the JavaRanch Style Guide.
  • Post Reply Bookmark Topic Watch Topic
  • New Topic
Boost this thread!