Return-Path: Delivered-To: apmail-tomcat-users-archive@www.apache.org Received: (qmail 49594 invoked from network); 8 Mar 2011 19:51:14 -0000 Received: from hermes.apache.org (HELO mail.apache.org) (140.211.11.3) by minotaur.apache.org with SMTP; 8 Mar 2011 19:51:14 -0000 Received: (qmail 67776 invoked by uid 500); 8 Mar 2011 19:51:11 -0000 Delivered-To: apmail-tomcat-users-archive@tomcat.apache.org Received: (qmail 67588 invoked by uid 500); 8 Mar 2011 19:51:11 -0000 Mailing-List: contact users-help@tomcat.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: "Tomcat Users List" Delivered-To: mailing list users@tomcat.apache.org Received: (qmail 67579 invoked by uid 99); 8 Mar 2011 19:51:11 -0000 Received: from nike.apache.org (HELO nike.apache.org) (192.87.106.230) by apache.org (qpsmtpd/0.29) with ESMTP; Tue, 08 Mar 2011 19:51:11 +0000 X-ASF-Spam-Status: No, hits=1.5 required=5.0 tests=FREEMAIL_FROM,HTML_MESSAGE,RCVD_IN_DNSWL_LOW,SPF_PASS X-Spam-Check-By: apache.org Received-SPF: pass (nike.apache.org: domain of deltarho2k@gmail.com designates 209.85.213.45 as permitted sender) Received: from [209.85.213.45] (HELO mail-yw0-f45.google.com) (209.85.213.45) by apache.org (qpsmtpd/0.29) with ESMTP; Tue, 08 Mar 2011 19:51:04 +0000 Received: by ywl41 with SMTP id 41so2843038ywl.18 for ; Tue, 08 Mar 2011 11:50:43 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:in-reply-to:references:date :message-id:subject:from:to:content-type; bh=v6NoXIvOqlFUroOCTemQjMYqWKSRbgFxaoteB34BtWs=; b=UeL92wPyfk434bM2OudsYr+d0V8h4UrwGzL1Kn+HB4vhISvmJ2lgRDxnmWQwHOzEzc HXu2aHS1L1Q4jqAPGPpePtksiL63Qn7bHL28zFclGMj1jfL64inQ3uluknD/ZI0011cN nj+K/o5/5EjEmIOTZo8CfHWHQsCNrq7wxJFnc= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :content-type; b=J6Yi+82miHABc/paQaLdWXn9YudvpjqwXMavt5KWegKpswETv/8ajKJsk5CuNTELYv vDwhR1fHgGjwfJWp1ef3no8X9f/I3f5Agt/75JZr8UyZ03vbFlRLd6hFOr6f3v+s9+4P dMP+qrpLj1HxXNof56Q8PfYco0nHC2rUpmPBY= MIME-Version: 1.0 Received: by 10.90.247.32 with SMTP id u32mr6929190agh.87.1299613843516; Tue, 08 Mar 2011 11:50:43 -0800 (PST) Received: by 10.90.25.2 with HTTP; Tue, 8 Mar 2011 11:50:43 -0800 (PST) In-Reply-To: <4D768546.9080807@hanik.com> References: <4D768546.9080807@hanik.com> Date: Tue, 8 Mar 2011 14:50:43 -0500 Message-ID: Subject: Re: SSL on Apache 6.0.18 troubles From: Jacob Nyhart To: Tomcat Users List Content-Type: multipart/alternative; boundary=001636284cdc7cf049049dfded56 X-Virus-Checked: Checked by ClamAV on apache.org --001636284cdc7cf049049dfded56 Content-Type: text/plain; charset=windows-1252 Content-Transfer-Encoding: quoted-printable That fixed it. Well, I feel officially dumb knowing the solution was that simple and staring me right in the face... ./facepalm Thanks for your quick response! ~J On Tue, Mar 8, 2011 at 2:36 PM, Filip Hanik - Dev Lists wrote: > add > > SSLEnabled=3D"true" > > to your connector > > Filip > > > On 3/8/2011 12:20 PM, Jacob Nyhart wrote: > >> I am running Apache version 6.0.18 on a Windows 2003 server. Cannot go t= o >> 6.0.29 yet because of vendor/client requirements. >> >> >> >> I am attempting to setup SSL, but am not having any success and so I see= k >> your help. >> >> >> >> My connector in my settings.xml file looks like this: >> >> >> >> > >> >> maxThreads=3D"150" minSpareThreads=3D"25" maxSpareThreads=3D"75" >> >> >> enableLookups=3D"false" disableUploadTimeout=3D"true" >> >> >> acceptCount=3D"100" scheme=3D"https" secure=3D"true" >> >> >> clientAuth=3D"false" sslProtocol=3D"TLS" >> >> >> keystorePass=3D"xxxxxxxx" >> >> >> keystoreType=3D"PKCS12" >> >> >> keystoreFile=3D"path/to/my/pfx file" /> >> >> >> >> The pfx file was generated by exporting my certificate from the IIS on t= he >> same server. That cert was generated from our company=92s internal CA (l= ower >> level environment). >> >> >> >> Now, here=92s the problem=85 If I call my app like this: http://domain= :8080 >> -- it works >> >> If I call my app like this: http://domain:443 =96 it works, but I don= =92t >> suspect this is SSL traffic since the browser doesn=92t present any >> indication >> the traffic is secure. >> >> If I call my app like this: https://domain =96 it fails =96 reporting th= at IE >> cannot display the page. (the file being called is a *jsp file). >> >> >> >> The server is inside a firewalled DMZ, and I have confirmed with my >> network >> >> guys that the rule is open. In addition, I have tested this from the >> server >> >> itself, so firewall rules should not be an issue. >> >> >> >> The STDOut.log file and Windows Event Viewers are giving no indications = as >> to what the problem is, the Tomcat appears to start fine, and APorts sho= ws >> that Tomcat6 is listening on port 443. >> >> >> >> Any help would be appreciated. >> >> > > --------------------------------------------------------------------- > To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org > For additional commands, e-mail: users-help@tomcat.apache.org > > --=20 ~J --001636284cdc7cf049049dfded56--