On Thu, Dec 11, 2014 at 1:11 PM, Olivier Nicole <olivier.nic...@cs.ait.ac.th> wrote: > When I keytool -imported the server.pem in tomcat, the file server.pem > contains only the certificate (SSLCertificateFile in Apache), not the > private key (SSLCertificateKeyFile in Apache). Could that be the > reason why?
Please note that there are 2 options for syntax of the SSL Connector attributes depending on whether you're running with native APR (which uses OpenSSL) or the default Java SSL implementation (JSSE). > Where/how can I see logs of what is happening? Try "tail -f catalina.out". If you don't see anything relevant, it's possible you may have to tweak tomcat's log level somewhere (I don't know off the top of my head where). > Once SSL will be working with tomcat, how to enable it in DSpace? For > the moment, when I login, it all goes through the non-SSL connector? For XMLUI, in dspace.cfg use xmlui.force.ssl = true For several reasons (most prominently for Shibboleth SP), it is also common to simply put Apache HTTPD as a front-end for Tomcat. In such a configuration, typically Apache would proxy requests to Tomcat via the AJP protocol. This would let you allow Apache handle SSL configuration, rewrites etc in a (hopefully) familiar way. Regards, ~~helix84 Compulsory reading: DSpace Mailing List Etiquette https://wiki.duraspace.org/display/DSPACE/Mailing+List+Etiquette ------------------------------------------------------------------------------ Download BIRT iHub F-Type - The Free Enterprise-Grade BIRT Server from Actuate! Instantly Supercharge Your Business Reports and Dashboards with Interactivity, Sharing, Native Excel Exports, App Integration & more Get technology previously reserved for billion-dollar corporations, FREE http://pubads.g.doubleclick.net/gampad/clk?id=164703151&iu=/4140/ostg.clktrk _______________________________________________ DSpace-tech mailing list DSpace-tech@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/dspace-tech List Etiquette: https://wiki.duraspace.org/display/DSPACE/Mailing+List+Etiquette
