Return-Path: 
 <tomcat-user-return-43401-apmail-jakarta-tomcat-user-archive=jakarta.apache.org@jakarta.apache.org>
Delivered-To: apmail-jakarta-tomcat-user-archive@jakarta.apache.org
Received: (qmail 65379 invoked by uid 500); 3 Aug 2001 15:29:04 -0000
Mailing-List: contact tomcat-user-help@jakarta.apache.org; run by ezmlm
Precedence: bulk
Reply-To: tomcat-user@jakarta.apache.org
list-help: <mailto:tomcat-user-help@jakarta.apache.org>
list-unsubscribe: <mailto:tomcat-user-unsubscribe@jakarta.apache.org>
list-post: <mailto:tomcat-user@jakarta.apache.org>
Delivered-To: mailing list tomcat-user@jakarta.apache.org
Received: (qmail 65371 invoked from network); 3 Aug 2001 15:29:04 -0000
Received: from 205-158-62-50.outblaze.com (HELO ws1-4.us4.outblaze.com)
 (205.158.62.50)
  by h31.sny.collab.net with SMTP; 3 Aug 2001 15:29:04 -0000
Received: (qmail 17987 invoked by uid 1001); 3 Aug 2001 15:28:37 -0000
Message-ID: <20010803152837.17986.qmail@mail.com>
Content-Type: text/plain; charset="iso-8859-1"
Content-Disposition: inline
Content-Transfer-Encoding: 7bit
MIME-Version: 1.0
X-Mailer: MIME-tools 5.41 (Entity 5.404)
Received: from ws1-4.us4.outblaze.com for [195.68.35.51] via web-mailer on
    Fri, 03 Aug 2001 23:28:37 +0800
From: "Robert De Niro" <robertdeniro@consultant.com>
To: tomcat-user@jakarta.apache.org
Date: Fri, 03 Aug 2001 23:28:37 +0800
Subject: Setting standalone Tomcat with ssl for https
X-Spam-Rating: h31.sny.collab.net 1.6.2 0/1000/N

Hello!
I have installet Tomcat standalone for testing my jsp on my machine,
now I need Tomcat to support ssl for serving https request.
I am running Windows NT, and Tomcat is installed in C:\TOMCAT (TOMCAT_HOME=C:\TOMCAT)
I read the document 
http://jakarta.apache.org/tomcat/tomcat-3.3-doc/tomcat-ssl-howto.html
and the jGuru Faq
But it still doesn't work properly.

- I have installed the JSSE jars to the CLASSPATH
- I have edited the %java_home%\jre\lib\security\java.security
- In the C:\TOMCAT\CONF\SERVER.XML
I have added :
	<Connector className="org.apache.tomcat.service.PoolTcpConnector">
	<Parameter name="handler" value="org.apache.tomcat.service.http.HttpConnectionHandler"/>
	<Parameter name="port" value="8443"/>
	<Parameter name="socketFactory" value="org.apache.tomcat.net.SSLSocketFactory"/>
	<Parameter name="keystore" value="/tomcat/conf/ct.cert.key" />
	<Parameter name="keypass" value="changeit"/>
	<Parameter name="clientAuth" value="true"/>
	</Connector>

The trouble is that I have been given two files by my company:
- a certificate called "ct.pem"
- a rsa private key called "ct.cert.key"
I don't have more information about these.
I put these files in my C:\TOMCAT\CONF directory

- Then I think that the parameter named "keystore" may point on the wrong location, but as I am with Windows NT I don't know if "/tomcat/conf/ct.cert.key" really points on my "ct.cert.key" file in my C:\TOMCAT\CONF directory. (slash and backslash problem?)
- I don't know either what to do with my certificate "ct.pem"
- I don't know if I am right of using the parameter named "keypass" with a "changeit" value
- Finally, I don't know how can I test if it is not working for real, as if I put any URL https://localhost/blablabla.../bla.jsp, it just goes on a blank page. If I can I access to a page like "http://localhost/blablabla.../bla.jsp" which is NON secure (http), can I access it when I just replace http by https ? Or do I have to install my jsp in another place?

Hey that's a lot of questions, but if you can help me clear these doubts, I'd be grateful, 
thanks in advance!
Bob
-- 

_______________________________________________
FREE Personalized E-mail at Mail.com 
http://www.mail.com/?sr=signup 

Talk More, Pay Less with Net2Phone Direct(R), up to 1500 minutes free! 
http://www.net2phone.com/cgi-bin/link.cgi?143