I thought I would post this here because I know other vendors use Apache
Tomcat as an application server on z/OS. I recently setup the server for
HTTPS/SSL using RACF keyrings. I got it to work but only after adding a
keystorePass="password" field to HTTPS connector in server.xml. I
stumbled accross this after checking how SAF keyrings are configured in
Websphere Liberty Profile. We haven't specified passwords when setting
up the server certificates and can't figure out why this is required as
it doesn't seem to do anything.
Here's the snippet from server.xml
<Connector port="9073" maxHttpHeaderSize="8192"
maxThreads="150" minSpareThreads="25" maxSpareThreads="75"
enableLookups="false" disableUploadTimeout="true"
SSLEnabled="true"
acceptCount="100" scheme="https" secure="true"
clientAuth="false" sslProtocol="TLS"
sslEnabledProtocols="TLSv1.2,TLSv1.1,TLSv1"
keystorePass="password"
keystoreType="JCERACFKS"
keystoreFile="safkeyring://STC@TXC/TXCKeyring.TXC" />
----------------------------------------------------------------------
For IBM-MAIN subscribe / signoff / archive access instructions,
send email to [email protected] with the message: INFO IBM-MAIN
