-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Adriano,
On 6/11/15 2:31 PM, Adriano Matos Meier wrote: > I had success when I re-import SSL certificate using same name > alias of PrivateKeyEntry and name alias used when I generate CSR > (repository). That was going to be my second suggestion. This is one more reason why I hate working with Java keystores: you have to import the signed certificate /on top of/ a previously-generated certificate? I don't understand why keytool always wants to create a self-signed certificate when you request a CSR. I just want a CSR, independent of the key and keystore. :( - -chris > Em Qui, 2015-06-11 às 09:59 -0400, Christopher Schultz escreveu: >> Adriano, >> >> On 6/11/15 9:45 AM, Adriano Matos Meier wrote: >>>>> I tried to add keyAlias="server" in my server.xml, but I >>>>> received this error: >>>> >>>> What does "keytool -list" show for that keystore? >>> >>> It returns 3 entries: >>> >>> 1 PrivateKeyEntry (Private Key) - alias repository 1 >>> trustedCertEntry (Intermediate certificate) - alias intermed 1 >>> trustedCertEntry (SSL certificate) - alias server >> >> The "keyAlias" attribute is for a key, not a cert. >> >> You want: >> >> <Connector ... keyAlias="repository" ... /> >> >> I could have sworn that you could also specify the "alias" of >> the certificate, but it looks like maybe not. You may have to >> remove the certificate called "server" and instead re-import the >> certificate using the alias "tomcat". >> >> Try just using keyAlias="repository" first. >> >> -chris >> >>> Em Qui, 2015-06-11 às 09:35 -0400, Christopher Schultz >>> escreveu: >>>>> >>>>> LifecycleException: service.getName(): "Catalina"; >>>>> Protocol handler start failed: java.io.IOException: Alias >>>>> name server does not identify a key entry >>>>> >>>>> The alias of SSL certificate needs to be same of CSR? >>>>> >>>>> What I did wrong? >>>>> >>>>> Can anybody help me? >>>>> >>>>> I appreciate any help! >>>> >>>> >>>> -chris >>> >>> -------------------------------------------------------------------- - - >>> >>> >> >>> To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org >>> For additional commands, e-mail: users-h...@tomcat.apache.org >>> >> --------------------------------------------------------------------- >> >> To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org >> For additional commands, e-mail: users-h...@tomcat.apache.org >> > > --------------------------------------------------------------------- > > To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org > For additional commands, e-mail: users-h...@tomcat.apache.org > -----BEGIN PGP SIGNATURE----- Comment: GPGTools - http://gpgtools.org iQIcBAEBCAAGBQJVeeNeAAoJEBzwKT+lPKRY5nYP/idIWYmMpJxrfaytTDzevpNG RfwSydEn9DPEBgDUT/B1sCg8nt8qAZm2DK1IyOyBQKWXqSvddaxLevKtCLODw0p6 WBUXLwkRm5rV4pv8RM5Bjx3uw97WTmwU8ZhoDSsm6JG7OvmNvsIPpdvFfflAga2v jsWVZilhju4TEMZAdyghgHf9nGX8gK/SYhS5216hqFKNcWZqyj2Kb5llAkfNoD0U 0BC4HmPrZaZaztHrWg9HDfr6l64uaBt0gF05FQVbwzx2b023nAxR2H6KHRsI3bfb rVZBetC4B4Y85JKb06W7y8oyz811M25cQMWSk5OqKnGOml384RpPgeeiDVsYg2Wh eOfankIQcV8mwEtAuMVZBUTYZ88qpj1GD1zONbrNrtaKGPnASglvyd7/cMGgnF4d RzNw+wfgFjSapkNmYzLU376Td0tJKIvqdIpmnRkkUL6lHgodVgOyNtHtIlhRZuHz 6W1uZkzuc4C5wDdFu8kBg1F/WkQJ6DpX9M4x4hw0+D9BOLQfKKHfQUts1llCmzGY tZwQIbFXZ4pJo0oz8gS4R3oW6HU8hUjgbymbF+P7LoWgs2XAfIFEs42lwyvOIU1i fXO+tWZ6JKE13cIS50ibQDtp2iwp61M4evpItXTcmp2v281jZrIC4m5wk5xwRJDY zm9Y/OCBKzssYxp5rj7b =GJWa -----END PGP SIGNATURE----- --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
