This week's book giveaway is in the Java in General forum.
We're giving away four copies of Think Java: How to Think Like a Computer Scientist and have Allen B. Downey & Chris Mayfield on-line!
See this thread for details.
Win a copy of Think Java: How to Think Like a Computer Scientist this week in the Java in General forum!
  • Post Reply
  • Bookmark Topic Watch Topic
  • New Topic

ssl configuration in tomcat

 
Muhammad Imad Qureshi
Ranch Hand
Posts: 238
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Hi

I have configured server.xml to point to my keystore.

I first created my keystore and then created a certificate signing request that I submitted to CA. they sent me a certificate that I imported in my keystore. My keystore also contains a self signed certificate that was automatically created when i created the keystore. now when i start the server and launch the browser it shows me the self signed cert and not the certificate from CA. Why do you think it is. can someone please tell me? its been weeks now i havent been able to solve this problem.

Thanks a lot.
Imad
 
Muhammad Imad Qureshi
Ranch Hand
Posts: 238
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
I found the solution. Problem was that verisign's root certificate was not added in my trusted store (cacerts). So I added that using the following command

keytool -import -alias root -file root.cer -keystore "c:/program files/java/jdk1.5.0_05/jre/lib/security/cacerts" -storepass changeit

the quotation marks are there in the file.

and then I imported the certificate reply from verisign using the same alias that I used to create the key

keytool -import -alias tomcat -file versign.cer -keypass 123456 -trustcacerts -keystore server.keystore

Then it installed the reply in my keystore.
Thats it.
 
  • Post Reply
  • Bookmark Topic Watch Topic
  • New Topic