Hello,
I've tried to follow the ssl-howto but I can't get orion to start my secure
site.
I'm hoping someone who has gotten ssl to work can give some insights.
I've tried this on both orion 0.9.4 and 0.9.4j but the results are the same.
Here are the steps I took to work through the howto:
Just like the howto said, I generated my RSA key and created a certificate
request.
In order to generate the RSA key, I installed the default JSSE provider
(com.sun.net.ssl.internal.ssl.Provider in jsse.jar) that came with the orion
distribution, into my java.security configuration file. I posted my
certificate request to thawte's test certificate generator and created a
certificate with the default options (Test X509v3 SSL Cert).
When I tired to import my new certificate, keytool gave me an error,
something along the lines that it couldn't create the certificate chain, so
I imported thawte's Root Test CA certificate into my Keystore. With the CA
certificate in place, I was able to
import my certificate without further problems.
The problem occurs when I try to secure one of orion's websites with this
ssl configuration:
<ssl-config keystore="E:\WA\ssl\WAKeyStore" keystore-password="123123123"
needs-client-auth="false" />
Orion always fails to start up the secure site with this error:
Error starting HttpServer: Unable to intialize SSLServerSocketFactory
'com.everm
ind.ssl.JSSESSLServerSocketFactory': javax/net/ServerSocketFactory
I've tried different web sites and ports. One thing that came to mind was
matching the key alias to the site hostname parameter but that doesn't work
either.
What am I missing? Did I use the wrong RSA key generation provider or the
wrong kind of SSL certificate?
Any help would be greatly appreciated.
Thanks,
Andre V
