Hollerman Geralyn M [EMAIL PROTECTED] wrote in message
news:[EMAIL PROTECTED]
I currently have Tomcat 5.0.16 running using the SSL connector and a
self-signed
certificate - I followed the directions in the Tomcat SSL HOW-TO in how to
create the certificate and set up Tomcat for SSL. This is running with no
problems in my development environment.
I have been asked to put SSL on our production Tomcat. It is also v
5.0.16. My
sysadmin gave me two files he uses for Apache, running with SSL, on
another
system; he said he thought I would need them. They are called server.crt
and
server.key - he said he was giving me the certificate and the key for it.
How do
I intergrate this with Tomcat? How does this correspond to what I've got
for
Tomcat - I presume that the .crt file is like the .cer file I exported
from
cacerts.jks (my keystore), but what does the .key file correspond to? How
does
that fit in?
The '.key' file is the private key corresponding to the public key stored in
the '.crt' file.
IMHO, the easiest way to integrate your Apache cert with Tomcat is to export
the cert and the key to a PKCS12 file (see the Prepare the Certificate
Keystore section of the Tomcat ssl-howto for an example of how to do this),
and just use this file as your keystoreFile in Tomcat (remembering to set
keystoreType=PKCS12 as well :).
There are also utilities floating around the net to import Apache certs into
a JKS keystore (e.g. http://www.comu.de/docs/tomcat_ssl.htm). You can try
Google and/or searching the archives for other solutions (since this topic
comes up a lot :).
Thanks!
--
Lynn Hollerman.
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]