Return-Path: 
 <tomcat-user-return-125788-apmail-jakarta-tomcat-user-archive=jakarta.apache.org@jakarta.apache.org>
Delivered-To: apmail-jakarta-tomcat-user-archive@www.apache.org
Received: (qmail 34711 invoked from network); 28 Apr 2005 10:24:11 -0000
Received: from hermes.apache.org (HELO mail.apache.org) (209.237.227.199)
  by minotaur.apache.org with SMTP; 28 Apr 2005 10:24:11 -0000
Received: (qmail 62918 invoked by uid 500); 28 Apr 2005 10:24:37 -0000
Delivered-To: apmail-jakarta-tomcat-user-archive@jakarta.apache.org
Received: (qmail 62671 invoked by uid 500); 28 Apr 2005 10:24:35 -0000
Mailing-List: contact tomcat-user-help@jakarta.apache.org; run by ezmlm
Precedence: bulk
List-Unsubscribe: <mailto:tomcat-user-unsubscribe@jakarta.apache.org>
List-Subscribe: <mailto:tomcat-user-subscribe@jakarta.apache.org>
List-Help: <mailto:tomcat-user-help@jakarta.apache.org>
List-Post: <mailto:tomcat-user@jakarta.apache.org>
List-Id: "Tomcat Users List" <tomcat-user.jakarta.apache.org>
Reply-To: "Tomcat Users List" <tomcat-user@jakarta.apache.org>
Delivered-To: mailing list tomcat-user@jakarta.apache.org
Received: (qmail 62656 invoked by uid 99); 28 Apr 2005 10:24:35 -0000
X-ASF-Spam-Status: No, hits=0.0 required=10.0
	tests=
X-Spam-Check-By: apache.org
Received-SPF: pass (hermes.apache.org: local policy)
Received: from fmmailgate04.web.de (HELO fmmailgate04.web.de) (217.72.192.242)
  by apache.org (qpsmtpd/0.28) with ESMTP; Thu, 28 Apr 2005 03:24:35 -0700
Received: by fmmailgate04.web.de (8.12.10/8.12.10/webde Linux 0.7) with SMTP
 id j3SANX30016594
        for tomcat-user@jakarta.apache.org; Thu, 28 Apr 2005 12:23:33 +0200
Received: from [213.209.110.130] by freemailng1703.web.de with HTTP;
	Thu, 28 Apr 2005 12:23:18 +0200
Date: Thu, 28 Apr 2005 12:23:18 +0200
Message-Id: <456907153@web.de>
MIME-Version: 1.0
From: "nmg nmg" <shieroi@web.de>
To: tomcat-user@jakarta.apache.org
Subject: SSLException: No available certificate corresponds to the SSL cipher
 suites which are enabled
Organization: http://freemail.web.de/
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: 7bit
X-Virus-Checked: Checked
X-Spam-Rating: minotaur.apache.org 1.6.2 0/1000/N

Hello everbody,

i am facing problems in using a SSL certificate (gemcert.cer) that I recieved from my client. I imported that to a keystore using:

$JAVA_HOME/bin/keytool -import -alias tomcat -trustcacerts -v -file gemcert.cer -keystore tomcat.keystore

Then, I configured the server.xml's connector element.

        <Connector className="org.apache.coyote.tomcat5.CoyoteConnector"
               port="8443" minProcessors="5" maxProcessors="75"
               enableLookups="true"
                acceptCount="100" debug="0" scheme="https" secure="true"
               useURIValidationHack="false" disableUploadTimeout="true">
      <Factory className="org.apache.coyote.tomcat5.CoyoteServerSocketFactory"
                keystoreFile="/usr/local/gem/conf/tomcat.keystore"
                keystorePass="changeit"
               clientAuth="false" protocol="TLS" />
    </Connector>


upon server start I get the following error:

SSL handshake error: javax.net.ssl.SSLException: No available certificate corresponds to the SSL cipher suites which are enabled.


I have searched the tomcat archiv and read several messages on this topic. But in those messages it is always that the user himself creates a key, creates a *.csr and then recieves a certificate from an CA. But in my case I have just recieved a certificate from my client who has in turn recieved that from a CA.

Any help here would be fine.

Thanks in advance.

_______________________________________________________________
Fruhlings-Aktion: Gratis DSL-Modems zur freien Auswahl
Nur bis 30. April bei WEB.DE DSL! https://dsl.web.de/?mc=021193


---------------------------------------------------------------------
To unsubscribe, e-mail: tomcat-user-unsubscribe@jakarta.apache.org
For additional commands, e-mail: tomcat-user-help@jakarta.apache.org