Can you change the owner: chown tomcat:djigzo /usr/share/djigzo-web/ssl/sslCertificate.p12
Perhaps you missed that part (see https://www.ciphermail.com/documentation/installguide/pages/redhat-centos.html#install-tomcat) Kind regards, Martijn Brinkers On 20-05-2020 17:08, fatcharly via Users wrote: > [root@maria /]# stat /usr/share/djigzo-web/ssl/sslCertificate.p12 > File: ‘/usr/share/djigzo-web/ssl/sslCertificate.p12’ > Size: 2285 Blocks: 8 IO Block: 4096 regular file > Device: 801h/2049d Inode: 2625272 Links: 1 > Access: (0664/-rw-rw-r--) Uid: ( 1000/ djigzo) Gid: ( 1000/ djigzo) > Access: 2020-05-20 14:18:04.288708348 +0200 > Modify: 2019-12-20 17:12:37.000000000 +0100 > Change: 2020-05-20 14:14:53.260746806 +0200 > Birth: - > > >> Gesendet: Mittwoch, 20. Mai 2020 um 17:06 Uhr >> Von: "Martijn Brinkers via Users" <[email protected]> >> An: [email protected] >> Cc: "Martijn Brinkers" <[email protected]> >> Betreff: [CipherMail User] Re: change installed certificate for webfrontend >> 4.6 /CentOS 7.8 >> >> What are the stats for the file sslCertificate.p12? >> >> stat /usr/share/djigzo-web/ssl/sslCertificate.p12 >> >> Kind regards, >> >> Martijn Brinkers >> >> On 20-05-2020 16:04, [email protected] wrote: >>>> How did you install the gateway? Using the RPMs? >>> Yes, the suggesthed rpm's for Redhat/CentOS >>> >>>> Does the synlink /usr/share/djigzo/scripts/scripts.d/ssl.sh exist: >>>> >>>> stat /usr/share/djigzo/scripts/scripts.d/ssl.sh >>> [root@maria /]# stat /usr/share/djigzo/scripts/scripts.d/ssl.sh >>> File: ‘/usr/share/djigzo/scripts/scripts.d/ssl.sh’ -> ‘../ssl.sh’ >>> Size: 9 Blocks: 0 IO Block: 4096 symbolic link >>> Device: 801h/2049d Inode: 2625243 Links: 1 >>> Access: (0777/lrwxrwxrwx) Uid: ( 0/ root) Gid: ( 0/ root) >>> Access: 2020-05-20 15:44:49.008567381 +0200 >>> Modify: 2020-05-20 14:13:36.110766720 +0200 >>> Change: 2020-05-20 14:13:36.110766720 +0200 >>> Birth: - >>> >>> [root@maria /]# ll -la /usr/share/djigzo/scripts/scripts.d/ssl.sh >>> lrwxrwxrwx 1 root root 9 May 20 14:13 >>> /usr/share/djigzo/scripts/scripts.d/ssl.sh -> ../ssl.sh >>> >>>> If so, what are the owner are permissions of the file >>>> /usr/share/djigzo/scripts/ssl.sh: >>>> >>>> stat /usr/share/djigzo/scripts/ssl.sh >>> [root@maria /]# stat /usr/share/djigzo/scripts/ssl.sh >>> File: ‘/usr/share/djigzo/scripts/ssl.sh’ >>> Size: 1420 Blocks: 8 IO Block: 4096 regular file >>> Device: 801h/2049d Inode: 2625096 Links: 1 >>> Access: (0755/-rwxr-xr-x) Uid: ( 0/ root) Gid: ( 0/ root) >>> Access: 2020-05-20 15:44:49.222564173 +0200 >>> Modify: 2019-12-20 17:08:20.000000000 +0100 >>> Change: 2020-05-20 14:13:36.102766826 +0200 >>> Birth: - >>> >>> -rwxr-xr-x 1 root root 1420 Dec 20 17:08 /usr/share/djigzo/scripts/ssl.sh >>> >>> >>> [root@maria /]# stat /usr/share/djigzo/scripts/scripts.d/ >>> File: ‘/usr/share/djigzo/scripts/scripts.d/’ >>> Size: 4096 Blocks: 8 IO Block: 4096 directory >>> Device: 801h/2049d Inode: 2625344 Links: 2 >>> Access: (0755/drwxr-xr-x) Uid: ( 0/ root) Gid: ( 0/ root) >>> Access: 2020-05-20 15:44:49.008567381 +0200 >>> Modify: 2020-05-20 14:13:36.110766720 +0200 >>> Change: 2020-05-20 14:13:36.110766720 +0200 >>> Birth: - >>> >>> Kind regards >>> >>> fatcharly >>> >>> >>>> Gesendet: Mittwoch, 20. Mai 2020 um 15:56 Uhr >>>> Von: "Martijn Brinkers via Users" <[email protected]> >>>> An: [email protected] >>>> Betreff: [CipherMail User] Re: change installed certificate for >>>> webfrontend 4.6 /CentOS 7.8 >>>> >>>> On 20-05-2020 15:47, [email protected] wrote: >>>>> after setting the missing parameter I get the following messages: >>>>> There was an error uploading the PKCS#12 file. Cause: Error running >>>>> [/usr/share/djigzo/scripts/execute-script-no-root.sh,ssl,-i]. exit >>>>> value: 1 (1) >>>> >>>> How did you install the gateway? Using the RPMs? >>>> >>>> There can be a couple of reasons this fails, ymlink for the ssl script >>>> not created, permission problems... >>>> >>>> Does the synlink /usr/share/djigzo/scripts/scripts.d/ssl.sh exist: >>>> >>>> stat /usr/share/djigzo/scripts/scripts.d/ssl.sh >>>> >>>> If so, what are the owner are permissions of the file >>>> /usr/share/djigzo/scripts/ssl.sh: >>>> >>>> stat /usr/share/djigzo/scripts/ssl.sh >>>> >>>> And what are the permissions/owner of the scripts.d dir: >>>> >>>> stat /usr/share/djigzo/scripts/scripts.d >>>> >>>> Kind regards, >>>> >>>> Martijn Brinkers >>>> >>>> >>>> >>>>>> Gesendet: Mittwoch, 20. Mai 2020 um 14:58 Uhr >>>>>> Von: "Martijn Brinkers via Users" <[email protected]> >>>>>> An: [email protected] >>>>>> Betreff: [CipherMail User] Re: change installed certificate for >>>>>> webfrontend 4.6 /CentOS 7.8 >>>>>> >>>>>> On 20-05-2020 14:44, fatcharly via Users wrote: >>>>>>> I'm using djigzo 4.6 with postgresql on an fully patched CentOS 7.8 >>>>>>> When I try to change the installed certificate for the >>>>>>> webadmin-frontend, I get the following messages: >>>>>>> >>>>>>> There was an error uploading the PKCS#12 file. Cause: Cannot run >>>>>>> program "/usr/share/tomcat/scripts/execute-script-no-root.sh": error=2, >>>>>>> No such file or directory >>>>>>> >>>>>>> Problem is, there is no "scripts"-folder under /usr/share/tomcat/ . >>>>>>> >>>>>>> How do I resolve the problem ? >>>>>> >>>>>> The most likely reason this happens is that djigzo.home parameter is not >>>>>> set for Tomcat. >>>>>> >>>>>> check whether /etc/sysconfig/tomcat contains the following line: >>>>>> >>>>>> JAVA_OPTS="-Ddjigzo-web.home=/usr/share/djigzo-web >>>>>> -Ddjigzo.home=/usr/share/djigzo -Djava.awt.headless=true -Xmx128M >>>>>> -Djdk.tls.ephemeralDHKeySize=2048" >>>>>> >>>>>> Note: djigzo.home should point to the directory where the back-end is >>>>>> installed >>>>>> >>>>>> If this is not configured, you can configure this with the following >>>>>> commmand (copied from >>>>>> https://www.ciphermail.com/documentation/installguide/pages/redhat-centos.html): >>>>>> >>>>>> echo "JAVA_OPTS=\"-Ddjigzo-web.home=/usr/share/djigzo-web \ >>>>>> -Ddjigzo.home=/usr/share/djigzo \ >>>>>> -Djava.awt.headless=true -Xmx128M\"" >> /etc/sysconfig/tomcat >>>>>> >>>>>> Then restart Tomcat >>>>>> >>>>>> Kind regards, >>>>>> >>>>>> Martijn Brinkers >>>>>> >>>>>> -- >>>>>> CipherMail email encryption >>>>>> Email encryption with support for S/MIME, >>>>>> OpenPGP, PDF encryption and secure webmail pull. >>>>>> >>>>>> W: https://www.ciphermail.com/ >>>>>> E: [email protected] >>>>>> T: +31 20 290 0088 >>>>>> _______________________________________________ >>>>>> Users mailing list -- [email protected] >>>>>> To unsubscribe send an email to [email protected] >>>>>> >>>> >>>> -- >>>> CipherMail email encryption >>>> Email encryption with support for S/MIME, >>>> OpenPGP, PDF encryption and secure webmail pull. >>>> >>>> W: https://www.ciphermail.com/ >>>> E: [email protected] >>>> T: +31 20 290 0088 >>>> _______________________________________________ >>>> Users mailing list -- [email protected] >>>> To unsubscribe send an email to [email protected] >>>> >> >> -- >> CipherMail email encryption >> Email encryption with support for S/MIME, >> OpenPGP, PDF encryption and secure webmail pull. >> >> W: https://www.ciphermail.com/ >> E: [email protected] >> T: +31 20 290 0088 >> _______________________________________________ >> Users mailing list -- [email protected] >> To unsubscribe send an email to [email protected] >> > _______________________________________________ > Users mailing list -- [email protected] > To unsubscribe send an email to [email protected] > -- CipherMail email encryption Email encryption with support for S/MIME, OpenPGP, PDF encryption and secure webmail pull. W: https://www.ciphermail.com/ E: [email protected] T: +31 20 290 0088 _______________________________________________ Users mailing list -- [email protected] To unsubscribe send an email to [email protected]
