Well, firstly, Verisign should have given you a cert.crt file :). Verisign uses an intermediate cert to sign with (available from their site). Based on configuring mod_ssl I'm guessing that you need to download it and set: SSLCertificateChainFile="/path/to/int/cert.crt" in your <Connector> element.
>From the previous threads, I'm assuming that you are still using the APR connector. If you are using the Java connector, then simply import the intermediate cert into your keystore (and ignore the above). "Scott Purcell" <[EMAIL PROTECTED]> wrote in message news:[EMAIL PROTECTED] Hello, A few people helped me out last week, to get simple SSL running. IN particular Dhaval, Remy and Nate. Anyway, I have followed the directions from here: http://www.fatofthelan.com/articles/articles.php?pid=12 section 3 and all works well. So that means my tomcat is all configured and happy. But this was a "generic" certificate. I gave Verisign a certreq.csr file and they gave me a certificate last week and it was called cert.cer. I cannot for the life of me figure out how to get the certreq.csr working? I have been following these steps here: Based upon my knowledge,to incorporate Verisign certificate, steps are as follows: (Derived from http://www.fatofthelan.com/articles/articles.php?pid=12 ) (1) openssl req -new -out server.csr (This will generate csr and private key. Make sure you feel the values correctly on openssl command prompt. ) (2) openssl rsa -in privkey.pem -out server.key (This removes the passphrase from the private key. Also delete generated .rnd file) (3) Here there are two (either or) possibilities: But honestly do not know where to substitute my "certreq.csr" that verisign gave me in this equation. Regards --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
