I found out that tomcat was looking at the .keystore default...
However I specified in the server.xml file the below and tomcat just ignores it.
The traditional:
<!-- Define a SSL Coyote HTTP/1.1 Connector on port 443
-->
- <Connector className="org.apache.coyote.tomcat4.CoyoteConnector" port="443" minProcessors="5" maxProcessors="75" enableLookups="true" acceptCount="100" debug="0" scheme="https" secure="true" useURIValidationHack="false" disableUploadTimeout="true">
<Factory className="org.apache.coyote.tomcat4.CoyoteServerSocketFactory" clientAuth="false" protocol="TLS" />
<Parameter Name="keystore" Value="C:/keystore/newstore" />
<Parameter Name="keypass" Value="changeit" />
</Connector>
It sees the HTTPS port 443 but ignores the keystore and keypass parameters.. I also tried:
<!-- Define a SSL Coyote HTTP/1.1 Connector on port 443
-->
- <Connector className="org.apache.coyote.tomcat4.CoyoteConnector" port="443" minProcessors="5" maxProcessors="75" enableLookups="true" acceptCount="100" debug="0" scheme="https" secure="true" useURIValidationHack="false" disableUploadTimeout="true">
<Factory className="org.apache.coyote.tomcat4.CoyoteServerSocketFactory" clientAuth="false" protocol="TLS" />
keystoreFile="C:/keystore/newstore" keystorePass="changeit" />
<Parameter Name="keypass" Value="changeit" />
</Connector>
Tomcat still does not read the values. It keeps looking at the .keystore file located in c:\documents and settings\admin\
Where can I change this path??
Thanks,
Rob
==========
Hello,
Using tomcat 4.1 on a Windows 2000 sp3 system
Used keytool to generate the alias tomcat and keystore called mykeystore
Create a self signed cert.. used the default password changeit
I then created a CSR from using the keystore.. Imported the signed cert from the external CA into the keystore mykeystore
did a -list -keystore mykeystore and it should be the cert..
I then added the attributes to my server.xml file to use point to the new mykeystore location with password.. saved and started up tomcat
For some reason it's still looking at the self signed cert and not the new one.
What exactly is it looking at?
What am I doing wrong?
Thanks,
Roh
_________________________________________________________________
MSN 8 with e-mail virus protection service: 2 months FREE* http://join.msn.com/?page=features/virus
--
To unsubscribe, e-mail: <mailto:[EMAIL PROTECTED]>
For additional commands, e-mail: <mailto:[EMAIL PROTECTED]>
_________________________________________________________________
MSN 8 with e-mail virus protection service: 2 months FREE* http://join.msn.com/?page=features/virus
--
To unsubscribe, e-mail: <mailto:[EMAIL PROTECTED]>
For additional commands, e-mail: <mailto:[EMAIL PROTECTED]>
- why doesn't tomcat see my correct keystore? Rob Lagana
- Another JNDI Configuration issue Rob Lagana
- Another JNDI Configuration issue srinath narasimhan
- Re: Another JNDI Configuration issue Craig R. McClanahan
- RE: Another JNDI Configuration issue srinath narasimhan
- Re: why doesn't tomcat see my correct keystor... Rasputin
- Re: why doesn't tomcat see my correct keystore? Rob Lagana
- RE: why doesn't tomcat see my correct keystore? Donie Kelly
