-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Ignacio,
On 9/10/15 6:01 PM, Ignacio Barragan wrote: > I have Tomcat 7.0.42 on a Windows 2008R2 server. I’m pretty new to > Tomcat. > > It uses Java JDK and is configured with a standard JSSE SSL > certificate. How do I upgrade Java on an existing Tomcat server? > All the documentation is for configuring new installations. Generally, Tomcat doesn't care about the JVM installed -- it will use whatever is there. But it may depend upon how you launch Tomcat. If you are using a Windows Service to launch Tomcat, you'll need to point the service at the new JVM. > I can repeat the whole installation routine and install JDK in a > new directory and go through the whole thing….create keystore, > request new certificate etc. but that then I would have two > certificates for the same machine? You shouldn't need to do any of that at all. Java keystores are compatible across all versions of Java, and Tomcat already knows where the keystore is (right?). That Java keystore should be independent of the JVM installation. Can you post your <Connector> from server.xml, just to be sure? Remember to remove any sensitive information like passwords, etc. > Keytool has an export command, is that what this is for? If anyone > has experience in this and can guide me on the best pseudo code > method to upgrade Java using keystore SSL on an existing Tomcat 7 > server, that would be great. > > The same issue goes for upgrading from Tomcat 7.0.42 to Tomcat > 7.0.64. Do I do a complete de-install and re-install of the new > Tomcat version and repeat all the configurations or can you upgrade > Tomcat in place from the same series version to another one? I would highly recommend installing to a new directory. This will make it much easier to "downgrade" if you need to for some reason. - -chris -----BEGIN PGP SIGNATURE----- Comment: GPGTools - http://gpgtools.org iQIcBAEBCAAGBQJV9yKSAAoJEBzwKT+lPKRY7MIP/RvIFR+0333RvnKtHVoMjFzV qlfhWnSnZbMtgJ5+hsIzC7tgXQzTuwjfHTt7uV7OuJdaoIrXQ4QMY/jPcI1Rjynm 0SHvaD6rQ2ERdLdiox935W82cUwEojGLPsGNeuRVJOPkaAksMWpmOPqSLzYpz/ts 7y8eram+WBgQOJsQxrrfA1Rl5wHOSyEKrzN3AugCkidiFOAkU0JbsramMIUWOqyz /1O3IuaMbC4bBZQHbCnA99IMUi3BNzmQlkelmaY+4tgHtxJz3Jxku+OqTcwczrwL OaUFmntbNT4OXnAbwAWnV9tu+XmJPzms/a0jtLA23pMRcRUsB6HLkXbovalCNjrO GiOg4MNbwK/kD6+2blRpHa8jlBaI8Y8BIgYfESL3ls5WlYw4/yqINcJ2zrGv8+jp /0l6ypDPDZ3MNTEtXmpE/Phu3UWsCFi+USRwfMgN2X1R+MGTTlkaWZSEr9YnYBtD tAhAQqN3BP1u8S7jAvBPDyu2F/fHomWXbwsXzxQhZK3xnKU1c/1S41I/Ddd0UDOC SniBFG1PWNQc4AWoRU68z7kAa/HfROHsnFAXKfj52wwXdm6oyOljVDyHNDhGmijB XoTZlr9yGMKl36CBPv8Wg0Jql8RtdJLdXrg/vRQD9u3T0Z7lkkbGuyboyipr+gss c+mAhUaAN7DxBln4CLH+ =Qp0u -----END PGP SIGNATURE----- --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org