Hi Binta, apart from what Tom said, which is all good advice, I'd like to add that terminating SSL at Tomcat like you're trying to do is a perfectly fine option (as long as you don't plan on using Shibboleth SP, mod_rewrite or other Apache-specific modules).
There's a catch with SSL connector configuration, though. There are three implementations in Apache: * Http11AprProtocol - the one you tried to use - will work iff you're using APR * Http11NioProtocol - will work iff you're not using APR * Http11Protocol - will work iff you're not using APR This is all described in the Tomcat documentation (the whole page is relevant; this is the part on context configuration). Use Tomcat documentation for your Tomcat version. This one is for Tomcat 7: https://tomcat.apache.org/tomcat-7.0-doc/ssl-howto.html#Edit_the_Tomcat_Configuration_File Regards, ~~helix84 Compulsory reading: DSpace Mailing List Etiquette https://wiki.duraspace.org/display/DSPACE/Mailing+List+Etiquette On Thu, Nov 3, 2016 at 11:02 AM, Saidy Binta <[email protected]> wrote: > Hi All, > > > > Please see configuration on tomcat but I cannot still access tomcat on > https. Please direct me on the way forward. > > > > <Connector port="8443" protocol="org.apache.coyote.http11.Http11AprProtocol" > SSLEnabled="true" > > maxThreads="150" scheme="https" secure="true" SSLEngine="on" > clientAuth="false" > > SSLCertificateFile="X:/certs/star_mrc_gm.p7b" > SSLCertificateKeyFile="X:/certs/star_mrc_gm.pem" > > sslProtocol="TLS" /> > > > > > > regards > > Binta > > > ________________________________ > > DISCLAIMER: This message is private and confidential. If you have received > this message in error please notify us and remove it from your system. Any > views and opinions expressed in this message are those of the individual > sender and do not necessarily represent the views and opinions of MRC Unit > The Gambia. > > ___________________________________________________________ > This communication is confidential and may contain privileged information > intended solely for the named recipient(s). It may not be used or disclosed > except for the purpose for which it has been sent. If you are not the > intended recipient, you must not copy, distribute, take any action or > reliance on it. If you have received this communication in error, do not > open any attachments but please notify the Help Desk by e-mailing > [email protected] quoting the sender details, and then delete this message along > with any attached files. E-mail messages are not secure and attachments > could contain software viruses which may damage your computer system. Whilst > every reasonable precaution has been taken to minimise this risk, The MRC > Unit The Gambia cannot accept any liability for any damage sustained as a > result of these factors. You are advised to carry out your own virus checks > before opening any attachments. Unless expressly stated, opinions in this > message are those of the e-mail author and not of the Medical Research > Council Unit The Gambia. > ________________________________________________________________________ > > -- > You received this message because you are subscribed to the Google Groups > "DSpace Technical Support" group. > To unsubscribe from this group and stop receiving emails from it, send an > email to [email protected]. > To post to this group, send email to [email protected]. > Visit this group at https://groups.google.com/group/dspace-tech. > For more options, visit https://groups.google.com/d/optout. -- You received this message because you are subscribed to the Google Groups "DSpace Technical Support" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. Visit this group at https://groups.google.com/group/dspace-tech. For more options, visit https://groups.google.com/d/optout.
