Abdellatif, AFAIK, Tomcat only support two types of certificates, JKS and PKCS12. If you want to create a self-signed certificate (if you don;t get it from Certificate Authority like Verisign), you may refer to SSL How-To from Tomcat: http://tomcat.apache.org/tomcat-5.5-doc/ssl-howto.html
Regards, Sukma 2009/7/27 Abdellatif HAROUS <[email protected]> > hi all....... > > > I am trying to get the SSO to work ...... so I am swtiching from http to > https to obtain SSO..... > IN http I use to get the CAS login page and manage to connect to my servlet > but to move to the other application I have to enter > credentials again.... > > I added these two attributes to connector port ( keystorePass , and > keystoreFile ) .....when I added them I could not get the cas login page > when I remove them I get the CAS login page , but after it , I can not get > the servlet login page > > I even changed the clientAuth once to true and once to false but nothing > changed > > <Connector port="8443" > * keystorePass = "changeit" >   keystoreFile = "N:\pchome\.pcprefs\Desktop\Imp > Documents\key.pem"* > minProcessors="5" maxProcessors="75" > enableLookups="true" disableUploadTimeout="true" > acceptCount="100" debug="0" scheme="https" secure="true" > clientAuth="true" sslProtocol="TLS" /> > > > this is the error that appear when I startup tomcat > > > Jul 27, 2009 10:10:13 AM org.apache.catalina.core.AprLifecycleListener > lifecycleEvent > INFO: The Apache Tomcat Native library which allows optimal performance in > production environments w > as not found on the java.library.path > C:\JDK50\bin;.;C:\WINDOWS\system32;C:\WINDOWS;C:\Programs\ora > cle\10.2g\bin;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\Program > Files\GnuPG\pub;C:\ > Program Files\TortoiseSVN\bin;c:\program > files\apache-maven-2.1.0\bin;C:\Program Files\Java\jre6\bin > ;C:\Program Files\Perl\bin;.;C:\JDK50/bin; > Jul 27, 2009 10:10:13 AM org.apache.coyote.http11.Http11BaseProtocol init > INFO: Initializing Coyote HTTP/1.1 on http-8080 > Jul 27, 2009 10:10:13 AM org.apache.coyote.http11.Http11BaseProtocol init > SEVERE: Error initializing endpoint > java.io.IOException: Invalid keystore format > at > sun.security.provider.JavaKeyStore.engineLoad(JavaKeyStore.java:632) > at java.security.KeyStore.load(KeyStore.java:1150) > a > org.apache.tomcat.util.net.jsse.JSSESocketFactory.getStore(JSSESocketFactory.java:287) > at > org.apache.tomcat.util.net.jsse.JSSESocketFactory.getKeystore(JSSESocketFactory.java:227) > > at > org.apache.tomcat.util.net.jsse.JSSE14SocketFactory.getKeyManagers(JSSE14SocketFactory.ja > va:142) > at > org.apache.tomcat.util.net.jsse.JSSE14SocketFactory.init(JSSE14SocketFactory.java:110) > at > org.apache.tomcat.util.net.jsse.JSSESocketFactory.createSocket(JSSESocketFactory.java:89) > > at > org.apache.tomcat.util.net.PoolTcpEndpoint.initEndpoint(PoolTcpEndpoint.java:293) > at > org.apache.coyote.http11.Http11BaseProtocol.init(Http11BaseProtocol.java:139) > a > org.apache.catalina.connector.Connector.initialize(Connector.java:1017) > at > org.apache.catalina.core.StandardService.initialize(StandardService.java:578) > at > org.apache.catalina.core.StandardServer.initialize(StandardServer.java:782) > at org.apache.catalina.startup.Catalina.load(Catalina.java:504) > at org.apache.catalina.startup.Catalina.load(Catalina.java:524) > at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) > at > sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39) > at > sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) > a java.lang.reflect.Method.invoke(Method.java:585) > at org.apache.catalina.startup.Bootstrap.load(Bootstrap.java:267) > at org.apache.catalina.startup.Bootstrap.main(Bootstrap.java:432) > Jul 27, 2009 10:10:13 AM org.apache.catalina.startup.Catalina load > SEVERE: Catalina.start > LifecycleException: Protocol handler initialization failed: > java.io.IOException: Invalid keystore f > ormat > at > org.apache.catalina.connector.Connector.initialize(Connector.java:1019) > at > org.apache.catalina.core.StandardService.initialize(StandardService.java:578) > at > org.apache.catalina.core.StandardServer.initialize(StandardServer.java:782) > a org.apache.catalina.startup.Catalina.load(Catalina.java:504) > at org.apache.catalina.startup.Catalina.load(Catalina.java:524) > at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) > at > sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39) > at > sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) > at java.lang.reflect.Method.invoke(Method.java:585) > at org.apache.catalina.startup.Bootstrap.load(Bootstrap.java:267) > at org.apache.catalina.startup.Bootstrap.main(Bootstrap.java:432) > Jul 27, 2009 10:10:13 AM org.apache.catalina.startup.Catalina load > INFO: Initialization processed in 907 ms > Jul 27, 200 10:10:13 AM org.apache.catalina.core.StandardService start > INFO: Starting service Catalina > Jul 27, 2009 10:10:13 AM org.apache.catalina.core.StandardEngine start > INFO: Starting Servlet Engine: Apache Tomcat/5.5.27 > Jul 27, 2009 10:10:13 AM org.apache.catalina.core.StandardHost start > INFO: XML validation disabled > Jul 27, 2009 10:10:13 AM org.apache.catalina.startup.HostConfig deployWAR > INFO: Deploying web application archive cas.war > 2009-07-27 10:10:17,958 INFO > [org.jasig.cas.web.flow.AuthenticationViaFormAction] - <FormObjectClass > not set. Using default class of > org.jasig.cas.authentication.principal.UsernamePasswordCredentials > with formObjectName credentials and validator > org.jasig.cas.validation.UsernamePasswordCredentialsV > alidator.> > Jul 27, 2009 10:10:18 AM org.apache.catalina.startup.HostConfig deployWAR > INFO: Deploying web application archive servelt1.war > log4j:WARN No appenders could be found for logge > (org.apache.commons.digester.Digester.sax). > log4j:WARN Please initialize the log4j system properly. > Jul 27, 2009 10:10:18 AM org.apache.catalina.startup.HostConfig deployWAR > INFO: Deploying web application archive servlet2.war > Jul 27, 2009 10:10:19 AM org.apache.catalina.core.StandardContext start > SEVERE: Error filterStart > Jul 27, 2009 10:10:19 AM org.apache.catalina.core.StandardContext start > SEVERE: Context [/servlets-examples] startup failed due to previous errors > Jul 27, 2009 10:10:19 AM org.apache.coyote.http11.Http11BaseProtocol start > INFO: Starting Coyote HTTP/1.1 on http-8080 > Jul 27, 2009 10:10:19 AM org.apache.coyote.http11.Http11BaseProtocol start > SEVERE: Error starting endpoint > java.io.IOException: Invalid keystore format > at > sun.security.provider.JavaKeyStore.engineLoad(JavaKeyStore.java:632) > a java.security.KeyStore.load(KeyStore.java:1150) > at > org.apache.tomcat.util.net.jsse.JSSESocketFactory.getStore(JSSESocketFactory.java:287) > at > org.apache.tomcat.util.net.jsse.JSSESocketFactory.getKeystore(JSSESocketFactory.java:227) > > at > org.apache.tomcat.util.net.jsse.JSSE14SocketFactory.getKeyManagers(JSSE14SocketFactory.ja > va:142) > at > org.apache.tomcat.util.net.jsse.JSSE14SocketFactory.init(JSSE14SocketFactory.java:110) > at > org.apache.tomcat.util.net.jsse.JSSESocketFactory.createSocket(JSSESocketFactory.java:89) > > at > org.apache.tomcat.util.net.PoolTcpEndpoint.initEndpoint(PoolTcpEndpoint.java:293) > a > org.apache.tomcat.util.net.PoolTcpEndpoint.startEndpoint(PoolTcpEndpoint.java:313) > at > org.apache.coyote.http11.Http11BaseProtocol.start(Http11BaseProtocol.java:151) > at > org.apache.coyote.http11.Http11Protocol.start(Http11Protocol.java:76) > at > org.apache.catalina.connector.Connector.start(Connector.java:1090) > at > org.apache.catalina.core.StandardService.start(StandardService.java:457) > at > org.apache.catalina.core.StandardServer.start(StandardServer.java:700) > at org.apache.catalina.startup.Catalina.start(Catalina.java:552) > at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) > a > sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39) > at > sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) > at java.lang.reflect.Method.invoke(Method.java:585) > at org.apache.catalina.startup.Bootstrap.start(Bootstrap.java:295) > at org.apache.catalina.startup.Bootstrap.main(Bootstrap.java:433) > Jul 27, 2009 10:10:19 AM org.apache.catalina.startup.Catalina start > SEVERE: Catalina.start: > LifecycleException: service.getName(): "Catalina"; Protocol handler start > failed: java.io.IOExcept > ion: Invalid keystore format > at > org.apache.catalina.connector.Connector.start(Connector.java:1097) > a > org.apache.catalina.core.StandardService.start(StandardService.java:457) > at > org.apache.catalina.core.StandardServer.start(StandardServer.java:700) > at org.apache.catalina.startup.Catalina.start(Catalina.java:552) > at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) > at > sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39) > at > sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) > at java.lang.reflect.Method.invoke(Method.java:585) > at org.apache.catalina.startup.Bootstrap.start(Bootstrap.java:295) > a org.apache.catalina.startup.Bootstrap.main(Bootstrap.java:433) > Jul 27, 2009 10:10:19 AM org.apache.catalina.startup.Catalina start > INFO: Server startup in 6296 ms > 2009-07-27 10:10:36,567 INFO > [org.jasig.cas.ticket.registry.support.DefaultTicketRegistryCleaner] - > <Starting cleaning of expired tickets from ticket registry at [Mon Jul 27 > 10:10:36 EDT 2009]> > 2009-07-27 10:10:36,567 INFO > [org.jasig.cas.ticket.registry.support.DefaultTicketRegistryCleaner] - > <0 found to be removed. Removing now.> > 2009-07-27 10:10:36,567 INFO > [org.jasig.cas.ticket.registry.support.DefaultTicketRegistryCleaner] - > <Finished cleaning of expired tickets from ticket registry at [Mon Jul 27 > 10:10:36 EDT 2009]> > > > > > ------------------------------ > check out the rest of the Windows Live™. More than mail–Windows Live™ goes > way beyond your inbox. More than > messages<http://www.microsoft.com/windows/windowslive/> > > -- > You are currently subscribed to [email protected] as: [email protected] > To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/display/JSG/cas-user > > -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
