tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Christopher Schultz <ch...@christopherschultz.net>
Subject Re: TOMCAT with multiple sites (one on https, others on http)
Date Wed, 08 Aug 2012 03:27:45 GMT
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Massimo,

On 8/7/12 12:52 PM, Massimo Chirivì - Ict Consultant wrote:
> i HAVE CORRECT THIS ERROR, <CONNECTOR> NOW IS OUT THE <ENGINE>
> 
> now the log files write: 7-ago-2012 18.42.52
> org.apache.catalina.core.AprLifecycleListener init INFO: Loaded APR
> based Apache Tomcat Native library 1.1.10. 7-ago-2012 18.42.52
> org.apache.catalina.core.AprLifecycleListener init INFO: APR
> capabilities: IPv6 [false], sendfile [true], accept filters 
> [false], random [true]. 7-ago-2012 18.42.53
> org.apache.coyote.http11.Http11AprProtocol init INFO: Initializing
> Coyote HTTP/1.1 on http-80 7-ago-2012 18.42.53
> org.apache.coyote.ajp.AjpAprProtocol init INFO: Initializing Coyote
> AJP/1.3 on ajp-8009 7-ago-2012 18.42.53
> org.apache.coyote.http11.Http11AprProtocol init GRAVE: Error
> initializing endpoint java.lang.Exception: No Certificate file
> specified at org.apache.tomcat.jni.SSLContext.setCertificate(Native
> Method) at
> org.apache.tomcat.util.net.AprEndpoint.init(AprEndpoint.java:684)

...and there is the problem: you need to use APR configuration and not
JSSE configuration in your <Connector>.

Specifically, don't use keystoreFile, etc. Instead, use
SSLCertificateFile, etc. See
http://tomcat.apache.org/tomcat-6.0-doc/apr.html#HTTPS for reference.
Unfortunately, you have (likely) gone through the grueling procedure
of dealing with Java keystores and now you can use the much simpler
PEM files that OpenSSL (via APR) use.

- -chris
-----BEGIN PGP SIGNATURE-----
Version: GnuPG/MacGPG2 v2.0.17 (Darwin)
Comment: GPGTools - http://gpgtools.org
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iEYEARECAAYFAlAh3LEACgkQ9CaO5/Lv0PBjWgCdFgnZMuHCwmGwm4+lFl+mPJ9N
8KUAni+epVauSTrMFa8NHQXudBbPAYOA
=t4Zt
-----END PGP SIGNATURE-----

---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org


Mime
View raw message