Hi Martijn, great, worked like a charm. Thank you very much for your fast response. I only updated this server today and there was nothing in the update-documentation about that part (https://www.ciphermail.com/documentation/installguide/pages/redhat-centos.html#install-tomcat). But I installed this system 5 years ago I think so I cant tell if I missed it in the first place.
Again thank very much and keep on working on the product, it is great ! fatcharly > Gesendet: Mittwoch, 20. Mai 2020 um 17:14 Uhr > Von: "Martijn Brinkers via Users" <[email protected]> > An: [email protected] > Cc: "Martijn Brinkers" <[email protected]> > Betreff: [CipherMail User] Re: change installed certificate for webfrontend > 4.6 /CentOS 7.8 > > Can you change the owner: > > chown tomcat:djigzo /usr/share/djigzo-web/ssl/sslCertificate.p12 > > Perhaps you missed that part (see > https://www.ciphermail.com/documentation/installguide/pages/redhat-centos.html#install-tomcat) > > Kind regards, > > Martijn Brinkers > > On 20-05-2020 17:08, fatcharly via Users wrote: > > [root@maria /]# stat /usr/share/djigzo-web/ssl/sslCertificate.p12 > > File: ‘/usr/share/djigzo-web/ssl/sslCertificate.p12’ > > Size: 2285 Blocks: 8 IO Block: 4096 regular file > > Device: 801h/2049d Inode: 2625272 Links: 1 > > Access: (0664/-rw-rw-r--) Uid: ( 1000/ djigzo) Gid: ( 1000/ djigzo) > > Access: 2020-05-20 14:18:04.288708348 +0200 > > Modify: 2019-12-20 17:12:37.000000000 +0100 > > Change: 2020-05-20 14:14:53.260746806 +0200 > > Birth: - > > > > > >> Gesendet: Mittwoch, 20. Mai 2020 um 17:06 Uhr > >> Von: "Martijn Brinkers via Users" <[email protected]> > >> An: [email protected] > >> Cc: "Martijn Brinkers" <[email protected]> > >> Betreff: [CipherMail User] Re: change installed certificate for > >> webfrontend 4.6 /CentOS 7.8 > >> > >> What are the stats for the file sslCertificate.p12? > >> > >> stat /usr/share/djigzo-web/ssl/sslCertificate.p12 > >> > >> Kind regards, > >> > >> Martijn Brinkers > >> > >> On 20-05-2020 16:04, [email protected] wrote: > >>>> How did you install the gateway? Using the RPMs? > >>> Yes, the suggesthed rpm's for Redhat/CentOS > >>> > >>>> Does the synlink /usr/share/djigzo/scripts/scripts.d/ssl.sh exist: > >>>> > >>>> stat /usr/share/djigzo/scripts/scripts.d/ssl.sh > >>> [root@maria /]# stat /usr/share/djigzo/scripts/scripts.d/ssl.sh > >>> File: ‘/usr/share/djigzo/scripts/scripts.d/ssl.sh’ -> ‘../ssl.sh’ > >>> Size: 9 Blocks: 0 IO Block: 4096 symbolic link > >>> Device: 801h/2049d Inode: 2625243 Links: 1 > >>> Access: (0777/lrwxrwxrwx) Uid: ( 0/ root) Gid: ( 0/ root) > >>> Access: 2020-05-20 15:44:49.008567381 +0200 > >>> Modify: 2020-05-20 14:13:36.110766720 +0200 > >>> Change: 2020-05-20 14:13:36.110766720 +0200 > >>> Birth: - > >>> > >>> [root@maria /]# ll -la /usr/share/djigzo/scripts/scripts.d/ssl.sh > >>> lrwxrwxrwx 1 root root 9 May 20 14:13 > >>> /usr/share/djigzo/scripts/scripts.d/ssl.sh -> ../ssl.sh > >>> > >>>> If so, what are the owner are permissions of the file > >>>> /usr/share/djigzo/scripts/ssl.sh: > >>>> > >>>> stat /usr/share/djigzo/scripts/ssl.sh > >>> [root@maria /]# stat /usr/share/djigzo/scripts/ssl.sh > >>> File: ‘/usr/share/djigzo/scripts/ssl.sh’ > >>> Size: 1420 Blocks: 8 IO Block: 4096 regular file > >>> Device: 801h/2049d Inode: 2625096 Links: 1 > >>> Access: (0755/-rwxr-xr-x) Uid: ( 0/ root) Gid: ( 0/ root) > >>> Access: 2020-05-20 15:44:49.222564173 +0200 > >>> Modify: 2019-12-20 17:08:20.000000000 +0100 > >>> Change: 2020-05-20 14:13:36.102766826 +0200 > >>> Birth: - > >>> > >>> -rwxr-xr-x 1 root root 1420 Dec 20 17:08 /usr/share/djigzo/scripts/ssl.sh > >>> > >>> > >>> [root@maria /]# stat /usr/share/djigzo/scripts/scripts.d/ > >>> File: ‘/usr/share/djigzo/scripts/scripts.d/’ > >>> Size: 4096 Blocks: 8 IO Block: 4096 directory > >>> Device: 801h/2049d Inode: 2625344 Links: 2 > >>> Access: (0755/drwxr-xr-x) Uid: ( 0/ root) Gid: ( 0/ root) > >>> Access: 2020-05-20 15:44:49.008567381 +0200 > >>> Modify: 2020-05-20 14:13:36.110766720 +0200 > >>> Change: 2020-05-20 14:13:36.110766720 +0200 > >>> Birth: - > >>> > >>> Kind regards > >>> > >>> fatcharly > >>> > >>> > >>>> Gesendet: Mittwoch, 20. Mai 2020 um 15:56 Uhr > >>>> Von: "Martijn Brinkers via Users" <[email protected]> > >>>> An: [email protected] > >>>> Betreff: [CipherMail User] Re: change installed certificate for > >>>> webfrontend 4.6 /CentOS 7.8 > >>>> > >>>> On 20-05-2020 15:47, [email protected] wrote: > >>>>> after setting the missing parameter I get the following messages: > >>>>> There was an error uploading the PKCS#12 file. Cause: Error running > >>>>> [/usr/share/djigzo/scripts/execute-script-no-root.sh,ssl,-i]. exit > >>>>> value: 1 (1) > >>>> > >>>> How did you install the gateway? Using the RPMs? > >>>> > >>>> There can be a couple of reasons this fails, ymlink for the ssl script > >>>> not created, permission problems... > >>>> > >>>> Does the synlink /usr/share/djigzo/scripts/scripts.d/ssl.sh exist: > >>>> > >>>> stat /usr/share/djigzo/scripts/scripts.d/ssl.sh > >>>> > >>>> If so, what are the owner are permissions of the file > >>>> /usr/share/djigzo/scripts/ssl.sh: > >>>> > >>>> stat /usr/share/djigzo/scripts/ssl.sh > >>>> > >>>> And what are the permissions/owner of the scripts.d dir: > >>>> > >>>> stat /usr/share/djigzo/scripts/scripts.d > >>>> > >>>> Kind regards, > >>>> > >>>> Martijn Brinkers > >>>> > >>>> > >>>> > >>>>>> Gesendet: Mittwoch, 20. Mai 2020 um 14:58 Uhr > >>>>>> Von: "Martijn Brinkers via Users" <[email protected]> > >>>>>> An: [email protected] > >>>>>> Betreff: [CipherMail User] Re: change installed certificate for > >>>>>> webfrontend 4.6 /CentOS 7.8 > >>>>>> > >>>>>> On 20-05-2020 14:44, fatcharly via Users wrote: > >>>>>>> I'm using djigzo 4.6 with postgresql on an fully patched CentOS 7.8 > >>>>>>> When I try to change the installed certificate for the > >>>>>>> webadmin-frontend, I get the following messages: > >>>>>>> > >>>>>>> There was an error uploading the PKCS#12 file. Cause: Cannot run > >>>>>>> program "/usr/share/tomcat/scripts/execute-script-no-root.sh": > >>>>>>> error=2, No such file or directory > >>>>>>> > >>>>>>> Problem is, there is no "scripts"-folder under /usr/share/tomcat/ . > >>>>>>> > >>>>>>> How do I resolve the problem ? > >>>>>> > >>>>>> The most likely reason this happens is that djigzo.home parameter is > >>>>>> not > >>>>>> set for Tomcat. > >>>>>> > >>>>>> check whether /etc/sysconfig/tomcat contains the following line: > >>>>>> > >>>>>> JAVA_OPTS="-Ddjigzo-web.home=/usr/share/djigzo-web > >>>>>> -Ddjigzo.home=/usr/share/djigzo -Djava.awt.headless=true -Xmx128M > >>>>>> -Djdk.tls.ephemeralDHKeySize=2048" > >>>>>> > >>>>>> Note: djigzo.home should point to the directory where the back-end is > >>>>>> installed > >>>>>> > >>>>>> If this is not configured, you can configure this with the following > >>>>>> commmand (copied from > >>>>>> https://www.ciphermail.com/documentation/installguide/pages/redhat-centos.html): > >>>>>> > >>>>>> echo "JAVA_OPTS=\"-Ddjigzo-web.home=/usr/share/djigzo-web \ > >>>>>> -Ddjigzo.home=/usr/share/djigzo \ > >>>>>> -Djava.awt.headless=true -Xmx128M\"" >> /etc/sysconfig/tomcat > >>>>>> > >>>>>> Then restart Tomcat > >>>>>> > >>>>>> Kind regards, > >>>>>> > >>>>>> Martijn Brinkers > >>>>>> > >>>>>> -- > >>>>>> CipherMail email encryption > >>>>>> Email encryption with support for S/MIME, > >>>>>> OpenPGP, PDF encryption and secure webmail pull. > >>>>>> > >>>>>> W: https://www.ciphermail.com/ > >>>>>> E: [email protected] > >>>>>> T: +31 20 290 0088 > >>>>>> _______________________________________________ > >>>>>> Users mailing list -- [email protected] > >>>>>> To unsubscribe send an email to [email protected] > >>>>>> > >>>> > >>>> -- > >>>> CipherMail email encryption > >>>> Email encryption with support for S/MIME, > >>>> OpenPGP, PDF encryption and secure webmail pull. > >>>> > >>>> W: https://www.ciphermail.com/ > >>>> E: [email protected] > >>>> T: +31 20 290 0088 > >>>> _______________________________________________ > >>>> Users mailing list -- [email protected] > >>>> To unsubscribe send an email to [email protected] > >>>> > >> > >> -- > >> CipherMail email encryption > >> Email encryption with support for S/MIME, > >> OpenPGP, PDF encryption and secure webmail pull. > >> > >> W: https://www.ciphermail.com/ > >> E: [email protected] > >> T: +31 20 290 0088 > >> _______________________________________________ > >> Users mailing list -- [email protected] > >> To unsubscribe send an email to [email protected] > >> > > _______________________________________________ > > Users mailing list -- [email protected] > > To unsubscribe send an email to [email protected] > > > > -- > CipherMail email encryption > Email encryption with support for S/MIME, > OpenPGP, PDF encryption and secure webmail pull. > > W: https://www.ciphermail.com/ > E: [email protected] > T: +31 20 290 0088 > _______________________________________________ > Users mailing list -- [email protected] > To unsubscribe send an email to [email protected] > _______________________________________________ Users mailing list -- [email protected] To unsubscribe send an email to [email protected]
