> > I recently moved from T8 to T9 to use PKI. > > Exact versions?
T8 = 8.5.50.0 on amazon-corretto-8.232.09.1-linux-x64 T9 = 9.0.30.0 on amazon-corretto-8.232.09.1-linux-x64 > > > My keystore contains multiple CAs. > > > > I had to modify the ssl-connector from > > org.apache.coyote.http11.Http11Protocol > > to > > org.apache.coyote.http11.Http11NioProtocol > > Full Connector configurations (with sensitive data masked)? TC8= <Connector port="443" keyAlias="XXX" protocol="org.apache.coyote.http11.Http11Protocol" scheme="https" secure="true" SSLEnabled="true" keystoreFile="XXXX" keystorePass="XXXXX" sslProtocol="TLS" clientAuth="want" truststoreFile="XXXX" truststorePass="XXXXX" /> TC9= <Connector port="443" keyAlias="XXX" protocol="org.apache.coyote.http11.Http11NioProtocol" scheme="https" secure="true" SSLEnabled="true" keystoreFile="XXXX" keystorePass="XXXXX" sslProtocol="TLS" clientAuth="want" truststoreFile="XXXX" truststorePass="XXXXX" /> Masks: - XXX keystore CA - XXXX keystore or truststore - XXXXX password for keystore/truststore > > Mark Peter --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org