___________________________________________
Open the server.xml file.
After uncommenting the SSL/TLS connector from server.xml, locate the following text section:
<Factory className="org.apache.coyote.tomcat4.CoyoteServerSocketFactory" clientAuth="false" protocol="TLS" />
Add the "keystoreFile" and "keystorePass directives:
<Factory className="org.apache.coyote.tomcat4.CoyoteServerSocketFactory" clientAuth="false" protocol="TLS" keystoreFile="/full/path/to/tomcat.keystore" keystorePass="changeit" />
Restart Tomcat.
________________________________________________
Regards, Rene Larsen
Regards, Rene Larsen
Originally posted by Marty Finn:
How can I tell if I have the .java components running that are needed to facilitate this?
ORUse the following OpenSSL command to combine the ca bundle (gd_bundle.crt) and your SSL certificate:
openssl pkcs12 -export -chain -CAfile gd_bundle.crt -in <name of your certificate> -inkey <name of your certificate private key file> -out keystore.tomcat -name tomcat -passout pass:changeit
I chose the second option because "OPENSSL" was an invalid command.Installing Root and Intermediate Certificates
Root:
keytool -import -alias root -keystore tomcat.keystore -trustcacerts -file valicert_class2_root.crt.
First intermediate (gd_cross_intermediate.crt):
keytool -import -alias cross -keystore tomcat.keystore -trustcacerts -file gd_cross_intermediate.crt
Second intermediate (gd_intermediate.crt):
keytool -import -alias intermed -keystore tomcat.keystore -trustcacerts -file gd_intermediate.crt
Originally posted by Marty Finn:
OK thanks for all the help. I was importing the certificates into the wrong .keystore file.
When I now go to https://localhost:8443 I am prompted about certificate and our webpage loads. However from outside the just going to https://ourwebsite.com gives "page cannot be displayed" but plain http:// works.
Any ideas on my next step?
Heroic work plunger man. Please allow me to introduce you to this tiny ad:
Smokeless wood heat with a rocket mass heater
https://woodheat.net
|