On Tue, Apr 28, 2020 at 10:42 PM Naga Ramesh wrote:
> Can you check the below link..
>
> https://mkyong.com/webservices/jax-ws/suncertpathbuilderexception-unable-to-find-valid-certification-path-to-requested-target/
I think you intended to reply to the mailing list (users at tomcat dot
apache dot
On Mon, Apr 27, 2020 at 3:31 PM calder wrote:
>
> On Mon, Apr 27, 2020 at 11:22 AM Beard, Shawn M. wrote:
>
> > I have an app running in tomcat 9 that makes an ssl call to an external
> > webservice.
> >
> > It fails with these errors in the logs:
> >
> > ERROR javax.net.ssl.SSLHandshakeException:
On Mon, Apr 27, 2020, 16:30 calder wrote:
>
>
> On Mon, Apr 27, 2020 at 11:22 AM Beard, Shawn M.
> wrote:
>
>> I have an app running in tomcat 9 that makes an ssl call to an external
>> webservice.
>>
>>
>>
>> It fails with these errors in the logs:
>>
>> ERROR javax.net.ssl.SSLHandshakeExceptio
On Mon, Apr 27, 2020 at 11:22 AM Beard, Shawn M.
wrote:
> I have an app running in tomcat 9 that makes an ssl call to an external
> webservice.
>
>
>
> It fails with these errors in the logs:
>
> ERROR javax.net.ssl.SSLHandshakeException: PKIX path building failed:
> sun.security.provider.certpat
cooperation.
-Original Message-
From: Beard, Shawn M.
Sent: Monday, April 27, 2020 11:47 AM
To: Tomcat Users List
Subject: RE: tomcat and ssl [EXTERNAL]
Adding this to the JVM options worked:
-Djavax.net.ssl.trustStore=/usr/apache/tomcat/ssl/TomcatTrustStore.p12
: users@tomcat.apache.org
Subject: Re: tomcat and ssl [EXTERNAL]
** CAUTION: External message
On 27/04/2020 17:29, Beard, Shawn M. wrote:
> This is a 3rd party app so can't do that. We need to configure tomcat to have
> apps use a trust store just like any other java container.
Tha
Adding this to JVM options worked
-Djavax.net.ssl.trustStore=/usr/apache/tomcat/ssl/TomcatTrustStore.p12
-Djavax.net.ssl.trustStorePassword=XXX
Shawn Beard
Sr. Systems Engineer
BTS
+1-515-564-2528
-Original Message-
From: js84
Sent: Monday, April 27, 2020 11:33 AM
To: Tomcat User
as relying on system properties for configuration can be fragile).
Mark
>
>
>
> Shawn Beard
> Sr. Systems Engineer
> BTS
> +1-515-564-2528
>
> -Original Message-
> From: Mark Thomas
> Sent: Monday, April 27, 2020 11:26 AM
> To: users@
users@tomcat.apache.org
Subject: Re: tomcat and ssl [EXTERNAL]
** CAUTION: External message
On 27/04/2020 17:21, Beard, Shawn M. wrote:
> I have an app running in tomcat 9 that makes an ssl call to an
> external webservice.
>
>
>
> It fails with these errors
On 27/04/2020 17:21, Beard, Shawn M. wrote:
> I have an app running in tomcat 9 that makes an ssl call to an external
> webservice.
>
>
>
> It fails with these errors in the logs:
>
> ERROR javax.net.ssl.SSLHandshakeException: PKIX path building failed:
> sun.security.provider.certpath.SunCert
Yes, this helps me.
Thank You.
-Original Message-
From: peter.crowth...@googlemail.com [mailto:peter.crowth...@googlemail.com]
On Behalf Of Peter Crowther
Sent: jueves, 03 de marzo de 2011 0:48
To: Tomcat Users List
Subject: Re: Tomcat and SSL
On 2 March 2011 15:56, jvr wrote:
>
On 2 March 2011 15:56, jvr wrote:
> My question:
>
> If I'm not using JK Connector is mandatory configure tomcat as stand-alone
> server?
>
> or, although I'm not using JK Connector I could consider Apache like the
> primary web server?
>
> If you are not *somehow* forwarding requests from your p
Caldarale, Charles R [mailto:chuck.caldar...@unisys.com]
Sent: miércoles, 02 de marzo de 2011 15:06
To: Tomcat Users List
Subject: RE: Tomcat and SSL
> From: jvr [mailto:jvr...@gmail.com]
> Subject: RE: Tomcat and SSL
> Then I don't have to configure tomcat with SSL Configuration HOW-T
> From: jvr [mailto:jvr...@gmail.com]
> Subject: RE: Tomcat and SSL
> Then I don't have to configure tomcat with SSL
> Configuration HOW-TO as stand-alone web server
If you're intending to have Tomcat service SSL requests, then you do have to
configure it to fo
erver, although I don't use jk connector.
Only correct the 8443 port issue, isn't it?
Thank You.
Regards.
-Original Message-
From: Mark Thomas [mailto:ma...@apache.org]
Sent: miércoles, 02 de marzo de 2011 12:08
To: Tomcat Users List
Subject: Re: Tomcat and SSL
On 02/03/2011 10
On 02/03/2011 10:59, jvr wrote:
> If I go to
> http://www. domain.net:4848/applservlet/greeting
> with the browser I could see the servlet.
>
> But If I go to
> https://www. domain.net:8443/applservlet/greeting
> I'm being redirected to PLESK.
Then there is an issue with your hosting environment
If you really did follow the links, then the easiest is to continue to use
OpenSSL. Assuming that you have already set up an OpenSSL CA, then just
sign the CRS as normal, and send the resulting cert file back to the client.
They will need to import it into their keystore file (which should be n
Hi Klaus,
> coming back to my issue: How can I make sure that my certificate is
> right for tomcat? Could I attach it at one of these eMails? Or are
> attachments not allowed? Could you test it?
I think this could be one solution. Today I am not in office. But you
can send your stuff to [EMAI
Hi Franck,
coming back to my issue: How can I make sure that my certificate is
right for tomcat? Could I attach it at one of these eMails? Or are
attachments not allowed? Could you test it?
Would be great.
Thanks
Klaus
Klaus-F. Kaal schrieb:
Franck,
I changed that and restartet Tomcat.
Franck,
I changed that and restartet Tomcat. No different reading in the logs
Klaus
Franck Borel schrieb:
Does that tell you more?
Not really. But I think you must augment the debug value to 99:
Better?
-- Franck
--
Does that tell you more?
Not really. But I think you must augment the debug value to 99:
Better?
-- Franck
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Hi Franck,
yes, I am using Java 1.5 ONLY
I fitted in the catalina.sh the statement you suggested. In my opinion,
it didn't change anything in the log.
This now looks like this:
---
13.04.2006 14:00
Another suggestion:
Be sure that you are using only one Java version and that this version
is > 1.4.1 (there is a known bug with this version if you use it with JSSE).
Another idea is to use the -Djavax.net.debug=all flag. I never try this,
but it should help you to get more information about
Franck, I suspect that my way of creating the key could be the problem.
Do you have an idea where I could find a "dummy" key for just checking,
my key is not the problem. It should be a key which is already working
with tomcat.
Thanks
Klaus
Klaus-F. Kaal schrieb:
Yes, Franck, I am "root
Yes, Franck, I am "root" when I run key-creation and tomcat...
Franck Borel schrieb:
Next suggestion:
Did you make the key as root? And do you start Tomcat as root?
-- Franck
Yes, in testphase, I do all pw's in low-cases...
Franck Borel schrieb:
Hi Klaus,
Good Morning Franck,
yesterday
Next suggestion:
Did you make the key as root? And do you start Tomcat as root?
-- Franck
Yes, in testphase, I do all pw's in low-cases...
Franck Borel schrieb:
Hi Klaus,
Good Morning Franck,
yesterday, you did a great job, trying to help me. I appreciate that!
Thanks.
But... I am runn
Yes, in testphase, I do all pw's in low-cases...
Franck Borel schrieb:
Hi Klaus,
Good Morning Franck,
yesterday, you did a great job, trying to help me. I appreciate that!
Thanks.
But... I am running out of ideas. Regarding the password: presently,
I am using "changeit" for everything (
Hi Klaus,
Good Morning Franck,
yesterday, you did a great job, trying to help me. I appreciate that!
Thanks.
But... I am running out of ideas. Regarding the password: presently, I
am using "changeit" for everything (just to get in running), but I
still have no success.
Yesterday, I sent an
Good Morning Franck,
yesterday, you did a great job, trying to help me. I appreciate that!
But... I am running out of ideas. Regarding the password: presently, I
am using "changeit" for everything (just to get in running), but I still
have no success.
Yesterday, I sent anouther eMail explaini
Hi Klaus,
Hi Franck, still tomcat moans that the keystore was tampered or
password was incorrect.
I am not sure about the password. With all questions, I gave my own
and allways the same. Was that correct?
Yes, use your own password. 'Changeit' is only an example which is
principally used f
Awesome. I had spent like 3 hours fiddling with Tomcat and SSL.
I followed the directions at
http://tomcat.apache.org/tomcat-5.0-doc/ssl-howto.html,
but it turns out if you include the className attribute, you'll
get an InvocationTargetException and Tomcat will fail to start =(
So make sure yo
Hi,
thank you very much for all your effords, but it still does'nt work.
That is what I do:
CREATE KEY:
--
../../java/bin/keytool -genkey -alias tomcat -keyalg RSA -keystore
/opt/wt24/apache-to
"Klaus-F. Kaal" <[EMAIL PROTECTED]> wrote on 04/12/2006 11:11:16
AM:
> Hi Franck, still tomcat moans that the keystore was tampered or password
> was incorrect.
>
> I am not sure about the password. With all questions, I gave my own and
> allways the same. Was that correct?
>
> Klaus
>
>
>
Hi Franck, still tomcat moans that the keystore was tampered or password
was incorrect.
I am not sure about the password. With all questions, I gave my own and
allways the same. Was that correct?
Klaus
Franck Borel schrieb:
Sorry to disturb you again, but all the entries in my server.xm
Sorry to disturb you again, but all the entries in my server.xml do
not seem to be the problem.
*At present, TOMCAT states, that my .keystore was tampered or my
password was incorrect.*
But I did everything over and over again, and right!
My trouble is that there are lots of descriptions o
Sorry to disturb you again, but all the entries in my server.xml do not
seem to be the problem.
*At present, TOMCAT states, that my .keystore was tampered or my
password was incorrect.*
But I did everything over and over again, and right!
My trouble is that there are lots of descriptions of
Hi Klaus,
Hi Franck,
thank you for your hint. But I am not sure, which parameter is which
file.
To make things clear, here my procedure:
> openssl req -x509 -newkey rsa:512 -keyout ./demoCA/private/cakey.pem
-out ./dem
Hi Franck,
thank you for your hint. But I am not sure, which parameter is which file.
To make things clear, here my procedure:
> openssl req -x509 -newkey rsa:512 -keyout ./demoCA/private/cakey.pem
-out ./demoCA/cacert.pe
Hi,
I solved that problem. Now running in a new one:
I have changed the file server.xml and set port 8080 to 80.
I uncommented the SSL section and configured the port to 443. Now I
expect Tomcat to run on port 80 (what is does), and that, when I call
the same URL with "https", that it calls
Hi,
I solved that problem. Now running in a new one:
I have changed the file server.xml and set port 8080 to 80.
I uncommented the SSL section and configured the port to 443. Now I
expect Tomcat to run on port 80 (what is does), and that, when I call
the same URL with "https", that it calls
cc
Veuillez répondre Objet
à RE Tomcat and SSL
"Tomcat Users
Thanks, I now created a keystore for TOMCAT.
But still, when I start TOMCAT, I get the message:
--
SCHWERWIEGEND: Error starting endpoint
java.io.FileNotFoundException: /root/.keystore (No such file or directory)
at java.io.File
maybe "changeit" !
"Klaus-F. Kaal"
<[EMAIL PROTECTED]
ogic.com>
43 matches
Mail list logo
