RE: FW: tomcat integrated with httpd and over https port, not working

2010-08-12 Thread Irfan Khan 
Thanks,

Your recommended configuration worked, thanks dude... you are a champ! made
my day.


Thanks,
IK


-Original Message-
From: Leon Kolchinsky [mailto:lkolc...@gmail.com] 
Sent: Thursday, August 12, 2010 11:05 AM
To: Tomcat Users List
Subject: Re: FW: tomcat integrated with httpd and over https port, not
working

Hi,

Take a look here- http://myunster.com/blog/25.html

<http://myunster.com/blog/25.html>It'll give you an easy start.

Cheers,
Leon Kolchinsky

On Thu, Aug 12, 2010 at 12:57, Irfan Khan
wrote:

> Is there anyone who can help me to resolve this issue.
>
>
>
> From: Irfan Khan [mailto:irfan.k...@enovatemedia.co.in]
> Sent: Wednesday, August 11, 2010 5:31 PM
> To: 'users@tomcat.apache.org'
> Subject: tomcat integrated with httpd and over https port, not working
>
>
>
>
>
> Dear pals,
>
>
>
> Issue: tomcat integrated with httpd and over https port, not working.
>
>
>
> Important info: With the below given httpd.conf, if it is modified to work
> with http , then tomcat pages were accessed on http.
>
>
>
> So it is confirmed that there must be something wrong with ssl settings.
>
>
>
> I have tried find on Google , and ended with this final configuration for
> ssl but with no luck. I am pulling my hair to find out why it is not
> working.
>
>
>
> You brilliant guys can suggest!
>
> Kindly help!
>
> Thanks in advance!
>
>
>
>
>
> Tools Version details;
>
> Centos 5.3
>
> httpd-2.2.3-31
>
> tomcat-6.0.26
>
> mod_jk-1.2.28-httpd-2.2.X
>
> openssl-0.9.8e
>
> jre1.6.0_20
>
>
>
> EXISTING WORKING CONFIGURATION
>
> Http and https port on httpd - working fine
>
> Tomcat on port 8080 - working fine
>
> Tomcat + httpd + http port - working fine
>
>
>
> ##
>
> Httpd.conf
>
> ##
>
> NameVirtualHost *:443
>
>
>
> LoadModule jk_module modules/mod_jk.so
>
> JkWorkersFile "/etc/httpd/conf/workers.properties"
>
> JkShmFile "/var/log/httpd/mod_jk.shm"
>
> JkLogFile "/var/log/httpd/mod_jk.log"
>
> JkLogLevel info
>
> JkLogStampFormat "[%a %b %d %H %M %S %Y]"
>
> # JkOptions indicate to send SSL KEY SIZE,
>
> JkOptions +ForwardKeySize +ForwardURICompat -ForwardDirectories
> +ForwardSSLCertChain
>
> # Should mod_jk send SSL information to Tomcat (default is On)
>
> JkExtractSSL On
>
> # What is the indicator for SSL (default is HTTPS)
>
> JkHTTPSIndicator HTTPS
>
> # What is the indicator for SSL session (default is SSL_SESSION_ID)
>
> JkSESSIONIndicator SSL_SESSION_ID
>
> # What is the indicator for client SSL cipher suit (default is SSL_CIPHER)
>
> JkCIPHERIndicator SSL_CIPHER
>
> # What is the indicator for the client SSL certificated (default is
> SSL_CLIENT_CERT)
>
> JkCERTSIndicator SSL_CLIENT_CERT
>
>
>
>
>
> 
>
> ServerName abcd.com
>
> SSLEngine On
>
> SSLCipherSuite ALL:!ADH:!EXPORT:!SSLv2:RC4+RSA:+HIGH:+MEDIUM:+LOW
>
> SSLCertificateFile /etc/httpd/conf/ssl.crt/server.crt
>
> SSLCertificateKeyFile /etc/httpd/conf/ssl.key/server.key
>
>
>
> jkMount /tomcatpages* worker1
>
> 
>
>



-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org

Re: FW: tomcat integrated with httpd and over https port, not working

2010-08-12 Thread André Warnier 

Irfan Khan wrote:

Is there anyone who can help me to resolve this issue.


Maybe (but check the documentation, because I am not sure).

The thing is, you have an Apache configuration with VirtualHost's.
In such a case, the configuration directives present outside a  section, 
generally act as default for the  sections, *unless* the same configuration 
directive is also present inside the  section (in that case, the one inside 
the  overrides the default).


The above is the general rule, but there are exceptions : not all configuration directives 
of the "main" section are automatically carried over to the  section.
For example, JkMount is not automatically carroed over, unless you use the special 
JkMountCopy instructions.


So you have to check below, if some of Jkx instructions should not be moved from 
the main section, to the  section.

The documentation should tell you.

I know that the following are ok in the main section :

> LoadModule jk_module modules/mod_jk.so
>
> JkWorkersFile "/etc/httpd/conf/workers.properties"
>
> JkShmFile "/var/log/httpd/mod_jk.shm"
>
> JkLogFile "/var/log/httpd/mod_jk.log"
>
> JkLogLevel info
>
> JkLogStampFormat "[%a %b %d %H %M %S %Y]"

But for all the other ones, I don't know.






 

From: Irfan Khan [mailto:irfan.k...@enovatemedia.co.in] 
Sent: Wednesday, August 11, 2010 5:31 PM

To: 'users@tomcat.apache.org'
Subject: tomcat integrated with httpd and over https port, not working

 

 


Dear pals,

 


Issue: tomcat integrated with httpd and over https port, not working.

 


Important info: With the below given httpd.conf, if it is modified to work
with http , then tomcat pages were accessed on http. 

 


So it is confirmed that there must be something wrong with ssl settings.

 


I have tried find on Google , and ended with this final configuration for
ssl but with no luck. I am pulling my hair to find out why it is not
working.

 


You brilliant guys can suggest!

Kindly help!

Thanks in advance!

 

 

Tools Version details; 


Centos 5.3

httpd-2.2.3-31

tomcat-6.0.26

mod_jk-1.2.28-httpd-2.2.X

openssl-0.9.8e

jre1.6.0_20

 


EXISTING WORKING CONFIGURATION

Http and https port on httpd - working fine

Tomcat on port 8080 - working fine

Tomcat + httpd + http port - working fine

 


##

Httpd.conf

##

NameVirtualHost *:443

 


LoadModule jk_module modules/mod_jk.so

JkWorkersFile "/etc/httpd/conf/workers.properties"

JkShmFile "/var/log/httpd/mod_jk.shm"

JkLogFile "/var/log/httpd/mod_jk.log"

JkLogLevel info

JkLogStampFormat "[%a %b %d %H %M %S %Y]"

# JkOptions indicate to send SSL KEY SIZE,

JkOptions +ForwardKeySize +ForwardURICompat -ForwardDirectories
+ForwardSSLCertChain

# Should mod_jk send SSL information to Tomcat (default is On)

JkExtractSSL On

# What is the indicator for SSL (default is HTTPS)

JkHTTPSIndicator HTTPS

# What is the indicator for SSL session (default is SSL_SESSION_ID)

JkSESSIONIndicator SSL_SESSION_ID

# What is the indicator for client SSL cipher suit (default is SSL_CIPHER)

JkCIPHERIndicator SSL_CIPHER

# What is the indicator for the client SSL certificated (default is
SSL_CLIENT_CERT)

JkCERTSIndicator SSL_CLIENT_CERT

 

 




ServerName abcd.com

SSLEngine On

SSLCipherSuite ALL:!ADH:!EXPORT:!SSLv2:RC4+RSA:+HIGH:+MEDIUM:+LOW

SSLCertificateFile /etc/httpd/conf/ssl.crt/server.crt

SSLCertificateKeyFile /etc/httpd/conf/ssl.key/server.key

 


jkMount /tomcatpages* worker1







-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org

Re: FW: tomcat integrated with httpd and over https port, not working

2010-08-11 Thread Leon Kolchinsky 
Hi,

Take a look here- http://myunster.com/blog/25.html

It'll give you an easy start.

Cheers,
Leon Kolchinsky

On Thu, Aug 12, 2010 at 12:57, Irfan Khan wrote:

> Is there anyone who can help me to resolve this issue.
>
>
>
> From: Irfan Khan [mailto:irfan.k...@enovatemedia.co.in]
> Sent: Wednesday, August 11, 2010 5:31 PM
> To: 'users@tomcat.apache.org'
> Subject: tomcat integrated with httpd and over https port, not working
>
>
>
>
>
> Dear pals,
>
>
>
> Issue: tomcat integrated with httpd and over https port, not working.
>
>
>
> Important info: With the below given httpd.conf, if it is modified to work
> with http , then tomcat pages were accessed on http.
>
>
>
> So it is confirmed that there must be something wrong with ssl settings.
>
>
>
> I have tried find on Google , and ended with this final configuration for
> ssl but with no luck. I am pulling my hair to find out why it is not
> working.
>
>
>
> You brilliant guys can suggest!
>
> Kindly help!
>
> Thanks in advance!
>
>
>
>
>
> Tools Version details;
>
> Centos 5.3
>
> httpd-2.2.3-31
>
> tomcat-6.0.26
>
> mod_jk-1.2.28-httpd-2.2.X
>
> openssl-0.9.8e
>
> jre1.6.0_20
>
>
>
> EXISTING WORKING CONFIGURATION
>
> Http and https port on httpd - working fine
>
> Tomcat on port 8080 - working fine
>
> Tomcat + httpd + http port - working fine
>
>
>
> ##
>
> Httpd.conf
>
> ##
>
> NameVirtualHost *:443
>
>
>
> LoadModule jk_module modules/mod_jk.so
>
> JkWorkersFile "/etc/httpd/conf/workers.properties"
>
> JkShmFile "/var/log/httpd/mod_jk.shm"
>
> JkLogFile "/var/log/httpd/mod_jk.log"
>
> JkLogLevel info
>
> JkLogStampFormat "[%a %b %d %H %M %S %Y]"
>
> # JkOptions indicate to send SSL KEY SIZE,
>
> JkOptions +ForwardKeySize +ForwardURICompat -ForwardDirectories
> +ForwardSSLCertChain
>
> # Should mod_jk send SSL information to Tomcat (default is On)
>
> JkExtractSSL On
>
> # What is the indicator for SSL (default is HTTPS)
>
> JkHTTPSIndicator HTTPS
>
> # What is the indicator for SSL session (default is SSL_SESSION_ID)
>
> JkSESSIONIndicator SSL_SESSION_ID
>
> # What is the indicator for client SSL cipher suit (default is SSL_CIPHER)
>
> JkCIPHERIndicator SSL_CIPHER
>
> # What is the indicator for the client SSL certificated (default is
> SSL_CLIENT_CERT)
>
> JkCERTSIndicator SSL_CLIENT_CERT
>
>
>
>
>
> 
>
> ServerName abcd.com
>
> SSLEngine On
>
> SSLCipherSuite ALL:!ADH:!EXPORT:!SSLv2:RC4+RSA:+HIGH:+MEDIUM:+LOW
>
> SSLCertificateFile /etc/httpd/conf/ssl.crt/server.crt
>
> SSLCertificateKeyFile /etc/httpd/conf/ssl.key/server.key
>
>
>
> jkMount /tomcatpages* worker1
>
> 
>
>