Re: Tomcat 5 Multiple SSL certificates (virtual hosts)
Was looking for such an attribute.. I'll have to investigate again, thanks. -Original Message- From: Bill Barker [mailto:[EMAIL PROTECTED] Sent: Wed Mar 24 02:11:52 2004 To: [EMAIL PROTECTED] Subject: Re: Tomcat 5 Multiple SSL certificates (virtual hosts) IMHO, using separate keystore files is the easiest option. However, it should also be possible to specify which cert to use via the 'keyAlias' attribute on the Connector. "D'Alessandro, Arthur" <[EMAIL PROTECTED]> wrote in message news:[EMAIL PROTECTED] We'd like to implement a single Tomcat 5 server running multiple ip address aliases, each with it's own SSL certificate assigned. I do not see a configuration option, other than potentially trying to utilize a different keystore file (each with it's own tomcat alias cert) for each virtual host. Is there an easier way, and has anyone had any success in doing so? -Arthur - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Tomcat 5 Multiple SSL certificates (virtual hosts)
Thanks... Would be nice to utili1 keystore aliases..but that'll work -Original Message- From: Peter Rossbach [mailto:[EMAIL PROTECTED] Sent: Wed Mar 24 02:46:17 2004 To: Tomcat Users List Subject: Re: Tomcat 5 Multiple SSL certificates (virtual hosts) Hello Arthur, I have successfull tested those system with mulple IP Interfaces and different certs. One thing is a good practice: have small Service for admin web application The Engine name are Catalina of this service. Here my example configuration with one Catalina Service an two IP Service with different certs. factory org.apache.catalina.users.MemoryUserDatabaseFactory pathname conf/tomcat-users.xml I hope this help Peter -- http://tomcat.objektpark.org/ Bill Barker schrieb: >IMHO, using separate keystore files is the easiest option. However, it >should also be possible to specify which cert to use via the 'keyAlias' >attribute on the Connector. > >"D'Alessandro, Arthur" <[EMAIL PROTECTED]> wrote in message >news:[EMAIL PROTECTED] >We'd like to implement a single Tomcat 5 server running multiple ip >address aliases, each with it's own SSL certificate assigned. I do not >see a configuration option, other than potentially trying to utilize a >different keystore file (each with it's own tomcat alias cert) for each >virtual host. > >Is there an easier way, and has anyone had any success in doing so? > >-Arthur > > > > >- >To unsubscribe, e-mail: [EMAIL PROTECTED] >For additional commands, e-mail: [EMAIL PROTECTED] > > > > > - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Tomcat 5 Multiple SSL certificates (virtual hosts)
Hello Arthur, I have successfull tested those system with mulple IP Interfaces and different certs. One thing is a good practice: have small Service for admin web application The Engine name are Catalina of this service. Here my example configuration with one Catalina Service an two IP Service with different certs. debug="0"/> debug="0"/> type="org.apache.catalina.UserDatabase" description="User database that can be updated and saved"> factory org.apache.catalina.users.MemoryUserDatabaseFactory pathname conf/tomcat-users.xml port="7380" redirectPort="7543" address="secure1"/> port="7543" acceptCount="100" scheme="https" secure="true" address="secure1"> keystoreFile="conf/secure1.keystore" clientAuth="false" keystorePass="changeit" protocol="TLS" SSLImplementation="org.apache.tomcat.util.net.jsse.JSSEImplementation" /> prefix="catalina_log." suffix=".txt" dir="secure1/logs" timestamp="true"/> name="secure1" appBase="secure1/webapps" unpackWARs="false" autoDeploy="true" deployXML="true" deployOnStartUp="true" > port="7380" redirectPort="7543" address="secure2"/> port="7543" scheme="https" secure="true" address="secure2"> keystoreFile="conf/secure2.keystore" clientAuth="false" keystorePass="changeit2" protocol="TLS" SSLImplementation="org.apache.tomcat.util.net.jsse.JSSEImplementation" /> prefix="catalina_log." suffix=".txt" dir="secure2/logs" timestamp="true"/> name="secure2" appBase="secure2/webapps" unpackWARs="false" autoDeploy="true" deployXML="true" deployOnStartUp="true" > I hope this help Peter -- http://tomcat.objektpark.org/ Bill Barker schrieb: IMHO, using separate keystore files is the easiest option. However, it should also be possible to specify which cert to use via the 'keyAlias' attribute on the Connector. "D'Alessandro, Arthur" <[EMAIL PROTECTED]> wrote in message news:[EMAIL PROTECTED] We'd like to implement a single Tomcat 5 server running multiple ip address aliases, each with it's own SSL certificate assigned. I do not see a configuration option, other than potentially trying to utilize a different keystore file (each with it's own tomcat alias cert) for each virtual host. Is there an easier way, and has anyone had any success in doing so? -Arthur - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Tomcat 5 Multiple SSL certificates (virtual hosts)
IMHO, using separate keystore files is the easiest option. However, it should also be possible to specify which cert to use via the 'keyAlias' attribute on the Connector. "D'Alessandro, Arthur" <[EMAIL PROTECTED]> wrote in message news:[EMAIL PROTECTED] We'd like to implement a single Tomcat 5 server running multiple ip address aliases, each with it's own SSL certificate assigned. I do not see a configuration option, other than potentially trying to utilize a different keystore file (each with it's own tomcat alias cert) for each virtual host. Is there an easier way, and has anyone had any success in doing so? -Arthur - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]