Re: SSL configuration question
It shows both issued to and issue by because it is a self signed certificate. when you get you certificate authorized by some one like verisign, and then import that certificate into your keystore, you'll get issued by as that certifying authority's name. - Original Message - From: Faine, Mark [EMAIL PROTECTED] To: 'Tomcat Users List' tomcat-user@jakarta.apache.org Sent: Thursday, March 31, 2005 1:13 PM Subject: RE: SSL configuration question Thanks, I tried that before and got a permission error, but it works now. -Mark -Original Message- From: Hein Behrens [mailto:[EMAIL PROTECTED] Sent: Thursday, March 31, 2005 12:41 PM To: Tomcat Users List Subject: Re: SSL configuration question Answer to number 2 is edit your server.xml change 8443 to 443 in the ssl section also check that the the normal port redirects to 443. Where you see 8443 change to 443. 2 changes in your server.xml. - Original Message - From: Faine, Mark [EMAIL PROTECTED] To: tomcat-user@jakarta.apache.org Sent: Thursday, March 31, 2005 7:44 PM Subject: SSL configuration question Solaris 8, Tomcat 5.0.28 I've configured my tomcat installation with my SSL key from Entrust and it is working (sort of). 1. It is not correctly configured. It shows my organization as both issued to and issue by when I view the certificate information. Could someone explain what I have done wrong and how to correct it. 2. It must be run on port 8443 because I need to run it as a user other than root. How can I bypass this limitation and run it on the standard 443 port? Thanks, -Mark - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
multiple domain name support for https
Hi, Few browsers (like Mozilla) are giving a warning message == Security Error: Doamin Name Mismatch with https. I understand that the error is because i have two domain names, like www.mycompany.com and mycompany.com for the same IP, and the certificate of tomcat contains only one of the 2 names. I understand that i can not create another certificate, and i can not even use Name-based virtual hosts. It is important for me to over ride this Warning message in our production environment. I read somewhere that I can override the HostnameVerifier interface and achieve the solution. Can some one guide me about how to modify it and integrate with Tomcat. I appreciate your time. Thank you Regards, Sasisekar S Sundaram Research Assistant Center For Business and Information Technology (CBIT) University of Louisiana, Lafayette Ph: (337) 482 0618
Re: multiple domain name support for https
Thanks Antony ! - Original Message - From: Antony Paul [EMAIL PROTECTED] To: Tomcat Users List tomcat-user@jakarta.apache.org Sent: Wednesday, March 30, 2005 12:57 AM Subject: Re: multiple domain name support for https One way is to redirect all requests if the request.getServerName() dont return the hostname for which SSL certificate is issued. This can be done in entry pages to your site. On Wed, 30 Mar 2005 00:40:34 -0600, Sasisekar S Sundaram [EMAIL PROTECTED] wrote: Hi, Few browsers (like Mozilla) are giving a warning message == Security Error: Doamin Name Mismatch with https. I understand that the error is because i have two domain names, like www.mycompany.com and mycompany.com for the same IP, and the certificate of tomcat contains only one of the 2 names. I understand that i can not create another certificate, and i can not even use Name-based virtual hosts. It is important for me to over ride this Warning message in our production environment. I read somewhere that I can override the HostnameVerifier interface and achieve the solution. Can some one guide me about how to modify it and integrate with Tomcat. I appreciate your time. Thank you Regards, Sasisekar S Sundaram Research Assistant Center For Business and Information Technology (CBIT) University of Louisiana, Lafayette Ph: (337) 482 0618 -- rgds Antony Paul http://www.geocities.com/antonypaul24/ - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]