tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Balgeman, Timothy E \(Tim\)" <>
Subject RE: SSL https clientAuth debugging assistance
Date Tue, 09 Sep 2008 14:09:40 GMT
Thank you Martin for your reply.

I installed the log4j and it is logging information when I shutdown
tomcat, but no other time.  I have also tried messing with the
java.util.logging but an getting nowhere with that.

I am using the default as mentioned on the tomcat web
pages.  I expected more stuff in the log file and was hoping for SSL
connection information.  Am I off base?

-----Original Message-----
From: Martin Gainty [] 
Sent: Monday, September 08, 2008 12:43 PM
To: Tomcat Users List
Subject: RE: SSL https clientAuth debugging assistance

implement a logger so you can trace whats going on

also in %TOMCAT_HOME/conf/server.xml crankup the debug attribute on your
<Connector statement
and you'll see lots of messages in tomcat console

Disclaimer and confidentiality note 
Everything in this e-mail and any attachments relates to the official
business of Sender. This transmission is of a confidential nature and
Sender does not endorse distribution to any party other than intended
recipient. Sender does not necessarily endorse content contained within
this transmission. 

> Subject: SSL https clientAuth debugging assistance
> Date: Mon, 8 Sep 2008 11:49:04 -0500
> From:
> To:
> We have just started using Tomcat.  We are using version 5.5.26.
> I was able to set up Tomcat and get it running with our application.
> also have enabled SSL:
>    <Connector port="18443" maxHttpHeaderSize="8192"
>                maxThreads="150" minSpareThreads="25"
> maxSpareThreads="75"
>                enableLookups="false" disableUploadTimeout="true"
>                acceptCount="100" scheme="https" secure="true"
>                clientAuth="false" sslProtocol="TLS"
>                keystoreFile="conf/keystore" keyAlias="tomcat" />
> I have one user that needs use to authenticate their client.  I have
> this working on our development system (added their certificate to our
> keystore) but following the same process to our test box is failing.
> The client (which I don't have access to) is giving a very generic
> message.
> Is there a way that I can see why the client is failing the connection
> (i.e. certificate doesn't match client, certificate expired, ...) or
> more debugging information from the Tomcat side?
> Thanks
> Tim

See how Windows connects the people, information, and fun that are part
of your life.

To start a new topic, e-mail:
To unsubscribe, e-mail:
For additional commands, e-mail:

View raw message