tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Bill Barker" <>
Subject Re: Verisign Certificate Still Giving Me Troubles:
Date Sun, 04 Dec 2005 00:09:06 GMT
Well, firstly, Verisign should have given you a cert.crt file :).

Verisign uses an intermediate cert to sign with (available from their site). 
Based on configuring mod_ssl I'm guessing that you need to download it and 
in your <Connector> element.

>From the previous threads, I'm assuming that you are still using the APR 
connector.  If you are using the Java connector, then simply import the 
intermediate cert into your keystore (and ignore the above).

"Scott Purcell" <> wrote in message 


A few people helped me out last week, to get simple SSL running. IN 
particular Dhaval, Remy and Nate. Anyway, I have followed the directions 
from here: section 3 
and all works well.

So that means my tomcat is all configured and happy.

But this was a "generic" certificate. I gave Verisign a certreq.csr file and 
they gave me a certificate last week and it was called cert.cer.

I cannot for the life of me figure out how to get the certreq.csr working?

I have been following these steps here:
 Based upon my knowledge,to incorporate Verisign certificate, steps are as 
(Derived from )
(1) openssl req -new -out server.csr (This will generate csr and private 
key. Make sure you feel
the values correctly on openssl command prompt. )
(2) openssl rsa -in privkey.pem -out server.key (This removes the passphrase 
from the private key.
Also delete generated .rnd file)
(3) Here there are two (either or) possibilities:

But honestly do not know where to substitute my "certreq.csr" that verisign 
gave me in this equation.


To unsubscribe, e-mail:
For additional commands, e-mail:

View raw message