tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Mekkelsen Madden, Steve" <Steve.MekkelsenMad...@pega.com>
Subject RE: Configuring certificate for ssl support on Tomcat 8.5
Date Wed, 31 Aug 2016 15:15:35 GMT
-----Original Message-----
From: Mark Thomas [mailto:markt@apache.org] 
Sent: Wednesday, August 31, 2016 10:52 AM
To: Tomcat Users List <users@tomcat.apache.org>
Subject: Re: Configuring certificate for ssl support on Tomcat 8.5

On 31/08/2016 15:45, Lazar Kirchev wrote:
> Hello,
> 
> According to Tomcat 8.5 documentation [1] when JSSE is used if the key 
> alias is not specified through the attribute certificateKeyAlias of 
> Certificate entry, then "... the first key read from the keystore will 
> be used...".
> However, when the property is not specified Tomcat tries to use a 
> default key alias (which is "tomcat"). At least I got (on Tomcat 
> 8.5.4)
> java.io.IOException: Alias name tomcat does not identify a key entry
>     at
> org.apache.tomcat.util.net.jsse.JSSEUtil.getKeyManagers(JSSEUtil.java:213)
>     at
> org.apache.tomcat.util.net.AbstractJsseEndpoint.createSSLContext(Abstr
> actJsseEndpoint.java:101)
> 
> Is this the intended behavior?

http://svn.us.apache.org/repos/asf/tomcat/tc8.5.x/trunk/webapps/docs/changelog.xml

http://bz.apache.org/bugzilla/show_bug.cgi?id=59867

Mark

------
I got hit by this bug as well when upgrading from 8.0* to 8.5.3.  Adding keyAlias="myaliasname"
to the connector in server.xml was sufficient to make it work.

Steve


---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org

Mime
View raw message