I ran into this same snag.
The docs state that in the server.xml file where you activate SSL you should put
"ClientAuth=true". Make that "false".
Basically what is happening is that the server is asking the browser to identify
itself with a certificate. Most people do not have a certificate for their
browser, so the ClientAuth setting needs to be false.
Dion Vansevenant
Internetwork Administrator
MRO.com
|--------+----------------------->
| | "Pete Ehli" |
| | <peteehli@tel|
| | eport.com> |
| | |
| | 2001/01/22 |
| | 05:37 |
| | Please |
| | respond to |
| | tomcat-user |
| | |
|--------+----------------------->
>----------------------------------------------------------------------------|
| |
| To: [EMAIL PROTECTED] |
| cc: (bcc: Dion Vansevenant/PSDI) |
| Subject: Stand Alone SSL Tomcat Example Wanted - Please! |
>----------------------------------------------------------------------------|
Hello - I have followed the instructions in the docs - tomcat-ssl-howto (SSL
Direct) (Generate a SSL certificate (RSA) for tomcat) - From what I can
understand from the docs I am configuring tomcat to use "secure socket layering"
(https) via tomcat as a standalone server (no web server involved) I have done
everything the docs say to do without a hitch. Also I tested JSSE to see if it
was setup correctly via a servlet with this code fragment
SSLServerSocketFactory factory =
(SSLServerSocketFactory) SSLServerSocketFactory.getDefault();
SSLServerSocket sslSocket =
(SSLServerSocket)factory.createServerSocket(5757);
String [] cipherSuites = sslSocket.getEnabledCipherSuites();
for (int i = 0; i < cipherSuites.length; i++) {
System.out.println("Cipher Suite " + i + " = " + cipherSuites[i]);
}
Yes this test worked and setup is correct.
Ok when I start tomcat I have a HttpConnectionHandler on 8443 (everything is on
my local machine) When I try to access https://localhost:8443 via internet
explorer I get a dialog box that says
Client Athenthentication
The web site you want to use requests Athenthentication
Select the certificate to use when connecting
I configured the certificate as described in the docs
What I would like to know is if anyone has a sample program (servlet or jsp) to
connect to tomcat on a local machine using https. I downloaded the JSSE samples,
but they don't make much since (all are applications) a tutorial somewhere that
uses tomcat would be very helpful. The API for JSSE seems rather large and I am
confused as to where to start. Hey you've got to crawl before you can walk. If
anyone can help me out I would really appreciate it. You can email me directly
at [EMAIL PROTECTED] Thanks
-- Pete --
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, email: [EMAIL PROTECTED]
