Hmm, "changeit" is the default for cacerts file which is a truststore, what
you are trying to setup here (I think) is a keystore to present the identity
of your server correct? So perhaps its not so obvious to tomcat?
On Jan 11, 2008 4:33 PM, Neha Agrawal <[EMAIL PROTECTED]> wrote:
> keystore password is the default one 'changeit'
> so its not mandatory to supply
>
> --- Pulkit Singhal <[EMAIL PROTECTED]> wrote:
>
> > Don't you need to specify:
> > ====
> > keystorePass="somePassword"
> > ====
> > as well?
> >
> > On Jan 11, 2008 4:12 PM, Neha Agrawal
> > <[EMAIL PROTECTED]> wrote:
> >
> > > hi
> > > i have it my server.xml file
> > > and tomcat does recognise it..as i understood fro
> > mthe
> > > log
> > > Also now my logs are showing up following ..
> > >
> > > org.apache.coyote.http11.Http11AprProtocol init
> > > INFO: Initializing Coyote HTTP/1.1 on http-8180
> > > Jan 11, 2008 3:37:23 PM
> > > org.apache.coyote.http11.Http11AprProtocol init
> > > SEVERE: Error initializing endpoint
> > > java.lang.Exception: Unable to load certificate
> > key
> > > /var/lib/tomcat5.5/conf/localhost.key
> > > (error:0906A068:PEM routines:PEM_do_header:bad
> > > password read)
> > >
> > > --- Pulkit Singhal <[EMAIL PROTECTED]>
> > wrote:
> > >
> > > > Hello,
> > > >
> > > > Can you tell me if you are replacing this when
> > you
> > > > posted your question or
> > > > if this is what you really have in your
> > server.xml
> > > > file:
> > > > ====
> > > > ${catalina.base}
> > > > ====
> > > >
> > > > - Pulkit
> > > >
> > > > On Jan 11, 2008 2:08 PM, Neha Agrawal
> > > > <[EMAIL PROTECTED]> wrote:
> > > >
> > > > > hi!
> > > > > this is the sample connector given in the
> > doc..
> > > > >
> > > > >
> > > > > Connector port="8443" maxHttpHeaderSize="8192"
> > > > > maxThreads="150"
> > > > minSpareThreads="25"
> > > > > maxSpareThreads="75"
> > > > > enableLookups="false"
> > > > > disableUploadTimeout="true"
> > > > > acceptCount="100" scheme="https"
> > > > > secure="true"
> > > > > SSLEngine="on"
> > > > >
> > > > >
> > > >
> > >
> >
> SSLCertificateFile="${catalina.base}/conf/localhost.crt"
> > > > >
> > > > >
> > > >
> > >
> >
> SSLCertificateKeyFile="${catalina.base}/conf/localhost.key"
> > > > > /
> > > > >
> > > > > have this in my server.xml..
> > > > >
> > > > > i did not understand how to generate .key and
> > > > .cert
> > > > > files above
> > > > > i used this documnetation
> > > > >
> > http://sandbox.rulemaker.net/ngps/m2/howto.ca.html
> > > > >
> > > > > 1) to generate a CA (so got cacert.pem and
> > > > cakey.pem)
> > > > >
> > > > > 2)generate a new request (for certificate) and
> > > > sign it
> > > > > and got newkey.pem and newcert.pem
> > > > >
> > > > > then
> > > > > i used these two files for localhost.key and
> > > > > localhost.cert above by coping these to that
> > > > location
> > > > >
> > > > > still https://localhost:8443 is not working
> > > > >
> > > > > am i wrong in generating the localhost.key and
> > > > > localhost.cert files??
> > > > >
> > > > > thanks
> > > > > neha
> > > > >
> > > > >
> > > > > Forgot the famous last words? Access your
> > > > message archive online at
> > > > >
> > > >
> > http://in.messenger.yahoo.com/webmessengerpromo.php
> > > > >
> > > > >
> > > > >
> > > >
> > >
> >
> ---------------------------------------------------------------------
> > > > > To start a new topic, e-mail:
> > > > users@tomcat.apache.org
> > > > > To unsubscribe, e-mail:
> > > > [EMAIL PROTECTED]
> > > > > For additional commands, e-mail:
> > > > [EMAIL PROTECTED]
> > > > >
> > > > >
> > > >
> > >
> > >
> > >
> > > Bring your gang together - do your thing. Go
> > to
> > > http://in.promos.yahoo.com/groups
> > >
> >
>
>
>
> Save all your chat conversations. Find them online at
> http://in.messenger.yahoo.com/webmessengerpromo.php
>
> ---------------------------------------------------------------------
> To start a new topic, e-mail: users@tomcat.apache.org
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
>
>
