Re: Certificates On 5.5

2005-08-10 Thread Isaac Vetter 
cott,

I've found this document to be a helpful overview:
http://localhost:8080/tomcat-docs/ssl-howto.html (or wherever your tomcat
is running)

I'm working on something similar myself.  Tomcat keeps certs in a
specialized certificate "database" called a keystore.  Tomcat 5.5 can
use certificates in two formats: pkcs12 and jks.  If you already have
the certificate, and it's in neither of these formats, you'll need to
convert it. You can use openssl to convert it to pkcs12 or the keytool
script that comes with your jdk for jks.

Once it's the correct format, you need to edit your server.xml and
configure a connector ...

I'm trying to use pkcs12.  This is my connector:
 

But, it's not working ...
This is the error in logs/catalina--mm-dd.log.  Presumably it's a
problem with the cert?

Aug 10, 2005 7:49:51 PM org.apache.coyote.http11.Http11Protocol init
INFO: Initializing Coyote HTTP/1.1 on http-8083
Aug 10, 2005 7:49:53 PM org.apache.coyote.http11.Http11Protocol init
SEVERE: Error initializing endpoint
java.io.IOException: failed to decrypt safe contents entry:
java.lang.ArithmeticException: / by zero
 at
com.sun.net.ssl.internal.ssl.PKCS12KeyStore.engineLoad(PKCS12KeyStore.java:1275)
 at java.security.KeyStore.load(KeyStore.java:1150)
 at
org.apache.tomcat.util.net.jsse.JSSESocketFactory.getStore(JSSESocketFactory.java:280)
 at
org.apache.tomcat.util.net.jsse.JSSESocketFactory.getKeystore(JSSESocketFactory.java:222)
 at
org.apache.tomcat.util.net.jsse.JSSE14SocketFactory.getKeyManagers(JSSE14SocketFactory.java:141)
 at
org.apache.tomcat.util.net.jsse.JSSE14SocketFactory.init(JSSE14SocketFactory.java:109)
 at
org.apache.tomcat.util.net.jsse.JSSESocketFactory.createSocket(JSSESocketFactory.java:88)
 at
org.apache.tomcat.util.net.PoolTcpEndpoint.initEndpoint(PoolTcpEndpoint.java:292)
 at
org.apache.coyote.http11.Http11Protocol.init(Http11Protocol.java:142)
 at
org.apache.catalina.connector.Connector.initialize(Connector.java:928)


Isaac Vetter




> Hello,
>
> I have the need install Verisign Certificate on my Tomcat 5.5 running on
> XP.
>
> I am not that familiar with SSL, and was hoping someone may of done this,
> and could give me a high-level of the complexivity.
> I would like to have this running by Friday and could use any links, help.
>
> Thanks,
> Scott
>
> -
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
>
>


-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: Certificates On 5.5

2005-08-10 Thread Jason Bainbridge 
On 8/10/05, Scott Purcell <[EMAIL PROTECTED]> wrote:
> Hello,
> 
> I have the need install Verisign Certificate on my Tomcat 5.5 running on XP.
> 
> I am not that familiar with SSL, and was hoping someone may of done this, and 
> could give me a high-level of the complexivity.
> I would like to have this running by Friday and could use any links, help.

It is quite straight forward in the majority of cases:

http://jakarta.apache.org/tomcat/tomcat-5.5-doc/ssl-howto.html

Regards,
-- 
Jason Bainbridge
http://kde.org - [EMAIL PROTECTED]
Personal Site - http://jasonbainbridge.com

-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Certificates On 5.5

2005-08-10 Thread Scott Purcell 
Hello,

I have the need install Verisign Certificate on my Tomcat 5.5 running on XP.

I am not that familiar with SSL, and was hoping someone may of done this, and 
could give me a high-level of the complexivity.
I would like to have this running by Friday and could use any links, help.

Thanks,
Scott

-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]