Yes. Markus is right. When you add tcnative-1.dll, it means you are enabling APR support in tomcat, which is good.
For detail instruction, visit: http://www.mail-archive.com/users%40tomcat.apache.org/msg02500.html There is only one problem in the steps described in above link. It works 100% correctly with self-signed certificate but it does not work with Versign/Thwatte signed certificate. People have tested it. So just read the link and follow the steps. It is not difficult at all and best of all it works. Let us know how it goes with you. Regards, D --- Markus Sch�nhaber <[EMAIL PROTECTED]> wrote: > EddieE wrote: > > I'm using keystore files so I needed to add these to server.xml. > > I'm using native libraries since it appears that these are required if you > > want to use a non-default keystoreFile. > > No. With APR (the native libs) you'll have to configure the OpenSSL way: > http://tomcat.apache.org/tomcat-5.5-doc/apr.html#HTTPS > > > I added tcnative-1.dll and > > openssl.exe to the PATH. > > I tried both JDK 1.4 compatibility and 1.5 and get the same results. The > > server starts OK but the https connector will only work as http. > > I tried sslProtocol="TLS", "SSL" and leaving it out. > > What am I doing something wrong? > > You're mixing the .keystore config with the APR connector that uses OpenSSL. > If you want to use the .keystore, don't use the native libs. > > If your keystore file is not in the default location, set the keystoreFile > attribute of the Connector appropriately: > http://tomcat.apache.org/tomcat-5.5-doc/config/http.html#SSL%20Support > > Regards > � mks > > --------------------------------------------------------------------- > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > > __________________________________________________ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
