There are no handmade changes in config.xml. It's the same as in
geronimo-tomcat7-javaee6-web-3.0.1-bin.tar.gz
On 08/03/2013 10:04 PM, thiyagu_r wrote:
Please share the config.xml
Sent from my iPhone
On Aug 3, 2013, at 10:23 AM, "Oleg Andreyev [via Apache Geronimo]"
<[hidden email] </user/SendEmail.jtp?type=node&node=3987095&i=0>> wrote:
Hi,
Last days I tried to set up SSL on Geronimo 3.0.1 and finally had to
admit defeat.
My steps:
- Downloaded 3.0.1 (Linux x64, Web profile, run with Oracle JDK 1.6.0_14)
- Changed ports to 80/443 in config-substitution.properties
- Log in to Web console
- Created new keystore, enabled it, generated key, CSR, imported answer
from CA
No errors so far. The key looks like:
Version: 3
Subject: CN=xxx.yyyyy.com <http://xxx.yyyyy.com>, OU=Domain
Control Validated
Issuer: SERIALNUMBER=10688435, CN=Starfield Secure Certification
Authority, OU=http://certificates.starfieldtech.com/repository,
O="Starfield Technologies, Inc.", L=Scottsdale, ST=Arizona, C=US
Serial Number: 2292395462585499
Valid From: Fri Aug 02 20:15:19 EDT 2013
Valid To: Wed Jul 30 16:46:03 EDT 2014
Signature Alg: SHA1withRSA
Public Key Alg: RSA
critical ext: 2.5.29.15
critical ext: 2.5.29.19
non-critical ext: 2.5.29.14
non-critical ext: 1.3.6.1.5.5.7.1.1
non-critical ext: 2.5.29.31
non-critical ext: 2.5.29.32
non-critical ext: 2.5.29.37
non-critical ext: 2.5.29.35
non-critical ext: 2.5.29.17
Also I have changed Web servers/TomcatWebSSLConnector to set correct
keystoreFile and keystore password and stop/start it.
So, I tried connect with https and after some time "The connection was
reset". And I see error in geronimo log:
2013-08-02 20:19:22,861 ERROR [JIoEndpoint]
java.lang.NullPointerException
at
org.apache.tomcat.util.net.JIoEndpoint.processSocket(JIoEndpoint.java:525)
at
org.apache.tomcat.util.net.JIoEndpoint$Acceptor.run(JIoEndpoint.java:230)
at java.lang.Thread.run(Thread.java:619)
I describe this attempts because it is most appropriate to documentation
but I tried different JDK, geronimo 3.0.0, keystore created by keytool
and so on.
Any clue?
------------------------------------------------------------------------
If you reply to this email, your message will be added to the
discussion below:
http://apache-geronimo.328035.n3.nabble.com/Unable-to-set-up-ssl-tp3987094.html
To start a new topic under Users, email [hidden email]
</user/SendEmail.jtp?type=node&node=3987095&i=1>
To unsubscribe from Users, click here.
NAML
<http://apache-geronimo.328035.n3.nabble.com/template/NamlServlet.jtp?macro=macro_viewer&id=instant_html%21nabble%3Aemail.naml&base=nabble.naml.namespaces.BasicNamespace-nabble.view.web.template.NabbleNamespace-nabble.view.web.template.NodeNamespace&breadcrumbs=notify_subscribers%21nabble%3Aemail.naml-instant_emails%21nabble%3Aemail.naml-send_instant_email%21nabble%3Aemail.naml>
------------------------------------------------------------------------
View this message in context: Re: Unable to set up ssl
<http://apache-geronimo.328035.n3.nabble.com/Unable-to-set-up-ssl-tp3987094p3987095.html>
Sent from the Users mailing list archive
<http://apache-geronimo.328035.n3.nabble.com/Users-f328036.html> at
Nabble.com.
