File APIs for Java Developers
Manipulate DOC, XLS, PPT, PDF and many others from your application.
http://aspose.com/file-tools
The moose likes Tomcat and the fly likes Tomcat with SSL Big Moose Saloon
  Search | Java FAQ | Recent Topics | Flagged Topics | Hot Topics | Zero Replies
Register / Login
JavaRanch » Java Forums » Products » Tomcat
Bookmark "Tomcat with SSL" Watch "Tomcat with SSL" New topic
Author

Tomcat with SSL

krish_rsk
Greenhorn

Joined: Sep 09, 2001
Posts: 4
Hi,
I'm trying to SSL enable my tomcat 5.0.28. I follow the steps as per the document..
(1) Install JSSE component
(2) Create .keystore file
(3) Modify server.xml file

When I try to restart tomcat after all this, tomcat starts without any errors but after few seconds shuts down by itself.. without the SSL part enabled in the server.xml file, tomcat starts properly.

What could be problem?! I'm stuck!!! Any help is much appreciated!

Thanks..

Rgds,
Krish
krish_rsk
Greenhorn

Joined: Sep 09, 2001
Posts: 4
Hi,
Missed to mention.. I'm running these on Linux OS.

Thx..
William Brogden
Author and all-around good cowpoke
Rancher

Joined: Mar 22, 2000
Posts: 12825
    
    5
Surely it is writing error messages to some log file.
I have also been trying to get SSL running on Sun's Java Desktop (SuSE Linux) - the main problem seems to be telling the JVM where to look for the keystore. However, the only thing that breaks is the SSL Connector - Tomcat continues to run with the regular connector.
Bill
Ajith Anand
Ranch Hand

Joined: Aug 30, 2004
Posts: 40
Hi,

You can specify the key store in the server.xml file as part of the connector properties.
Its when you want to do mutual authentication that it becomes a bit tricky. I had to add my self-signed certificate in the JDK_HOME/jre/lib/security/cacerts keystore , in order for my browser client to produce an appropriate certificate for client side authentication....


LXI Technologies P Ltd
[url]www.lxisoft.com[/url]
krish_rsk
Greenhorn

Joined: Sep 09, 2001
Posts: 4
Hi,
I used this "connector" values & it works now. I guess the problem was with the classname I used before!

<Connector
className="org.apache.coyote.tomcat5.CoyoteConnector"
port="8444" minProcessors="5" maxProcessors="75"
maxThreads="150" minSpareThreads="25" maxSpareThreads="75"
enableLookups="true" disableUploadTimeout="true"
acceptCount="100" debug="0" scheme="https" secure="true"
useURIValidationHack="false" keystoreFile="/root/.keystore" keystorePass="changeit">
<Factory
className="org.apache.coyote.tomcat5.CoyoteServerSocketFactory"
clientAuth="false" protocol="TLS" debug="0" />
</Connector>

Yes, as you mentioned, it was writing to "catalina.out" under "logs".

Hope it doesn't break!!

Rgds,
Krish
 
I agree. Here's the link: http://aspose.com/file-tools
 
subject: Tomcat with SSL