Have you looked at the server.xml file in your tomcat's conf directory
already? You'll find brief instructions there or you can check out java's
keytool at : http://java.sun.com/j2se/1.3/docs/tooldocs/win32/keytool.html.
hth.
from server.xml....
<!--
Uncomment this for SSL support.
You _need_ to set up a server certificate if you want this
to work, and you need JSSE.
1. Add JSSE jars to CLASSPATH
2. Edit java.home/jre/lib/security/java.security
Add:
security.provider.2=com.sun.net.ssl.internal.ssl.Provider
3. Do: keytool -genkey -alias tomcat -keyalg RSA
RSA is essential to work with Netscape and IIS.
Use "changeit" as password. ( or add keypass attribute )
You don't need to sign the certificate.
You can set parameter keystore and keypass if you want
to change the default ( user.home/.keystore with changeit )
-->
<Connector className="org.apache.tomcat.service.PoolTcpConnector">
<Parameter name="handler"
value="org.apache.tomcat.service.http.HttpConnectionHandler"/>
<Parameter name="port"
value="8443"/>
<Parameter name="socketFactory"
value="org.apache.tomcat.net.SSLSocketFactory" />
</Connector>
:~)
Ricky Y. Artigas
Analyst/Programmer /
Database Administrator
Information Technology Division
Easycall Communications Phils., Inc.
> -------------------------------
> IMPORTANT NOTICE:
> This message (and any attachment hereto) may contain privileged and/or
> confidential information specific to EasyCall. If you are not the intended
> addressee indicated in this message, you may not copy or disseminate this
> message (or any attachment hereto) to anyone. Instead, please destroy this
> message (and any attachment hereto), and kindly notify the sender by reply
> email. Any information in this message (and any attachment thereto) that
> do not relate to the official business of EasyCall shall be understood as
> neither given nor endorsed by the company.
>
>
> -----Original Message-----
> From: Jon Shoberg [SMTP:[EMAIL PROTECTED]]
> Sent: Thursday, September 27, 2001 6:41 AM
> To: [EMAIL PROTECTED]
> Subject: Thawte, SSL, and Tomcat
>
>
> Hypothetical situation ...
>
> I have the domain "secure.foobar.com" and a Thawte SSL certificate
> configured with Apache (mod_ssl). The file provided back from Thawte is
> called "secure.foobar.com.crt". Is there a way to use that certificate in
> setting up https://secure.foobar.com:8443/myWebApp/ ? Do I have to go back
> to Thawte for another cert if I want to provide SSL though tomcat?
>
> Does anyone have, literally, "blind instructions" for setting up a
> commercial SSL cert? The current docs are pretty good but I am looking
> for
> something related to tomcat 3.x.x which covers creation and install of a
> commercial cert.
>
> Thanks
>
>
