tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Ken>
Subject Re: SSL working, but how to use a certificate?
Date Wed, 16 Aug 2000 16:36:14 GMT
SSL on Tomcat instructions:

1. Download 3.2b source version and build and install with all the
prerequisites in the README file. Make sure tomcat is working before
2. Download the jsse from sun and install the jars in your lib/ext dir
3. Edit server.xml in TOMCAT_HOME/conf and uncomment the ssl portion.
Also - follow the instructions in the file to activate SSL. Generate the
key etc...Restart Tomcat. If you don't get any errors, visit and you should get an
SSL page(with a warning about the CA).

4. Here is where I am. It works with the test certificate, signed by
me... with a warning in the browser. 

BUT now what? I need to use real certificates and keyfiles, signed by
verisign or thawte.
Where do I put the certificate and keyfiles? 



Sameer Yami wrote:
> Hi,
> I am trying to do precisely what you have done. If you do not mind, can you
> tell me the way you have incorporated SSL in tomcat?
> regards
> Sameer Yami
> >From: Ken <>
> >Reply-To:
> >To: "" <>
> >Subject: SSL working, but how to use a certificate?
> >Date: Tue, 15 Aug 2000 14:07:34 -0700
> >
> >Thanks for all of your help.
> >Tomcat is now running SSL in standalone mode and talking nicely with
> >netscape and IE.
> >
> >Next, I'd like to make this function in a useful way!
> >
> >How do I use an existing SSL certificate and private keyfile in tomcat?
> >I need to be able to either request new certificates by generating csr's
> >like we do with c2net's apache stronghold - that I can plug into tomcat
> >for specific domains, or import existing certificates.
> >
> >I am able to use keytool to import a certificate file, but I don't know
> >where to put the private key??
> >Tomcat complains "IOException reading request, ignored -
> > no cipher suites in common" and Netscape
> >says it "can't communicate securely."
> >
> >I basically understand how keytool works, but I must be missing
> >something bigger. A point toward the right documentation would be great.
> >
> >Thanks,
> >-Ken

View raw message