RE: SSL with multiple Tomcat instances

2009-08-28 Thread Don Prezioso
- From: Crypto Sal [mailto:crypto@gmail.com] Sent: Wednesday, August 26, 2009 10:03 PM To: users@tomcat.apache.org Subject: Re: SSL with multiple Tomcat instances Don, I think we found our culprit. (Java). The reason that webadvisor works, because it functions like a true server, your

RE: SSL with multiple Tomcat instances

2009-08-26 Thread Don Prezioso
[mailto:crypto@gmail.com] Sent: Tuesday, August 25, 2009 11:28 PM To: Tomcat Users List Subject: Re: SSL with multiple Tomcat instances Don, No problem. You're seeing valid output and yes a Root certificate is self-signed. As per the TLS protocol, it's optional and doesn't need

Re: SSL with multiple Tomcat instances

2009-08-26 Thread Crypto Sal
Don, It's very strange that one works and the other does not especially since they're from the same CA and presenting the same information. (Just different common names) I can't connect to your external site [webadvisor] via Firefox 3.5 or Chrome 4.0 due to the fact that your CA's OCSP responder

RE: SSL with multiple Tomcat instances

2009-08-26 Thread Don Prezioso
[mailto:crypto@gmail.com] Sent: Wednesday, August 26, 2009 4:48 PM To: Tomcat Users List Subject: Re: SSL with multiple Tomcat instances Don, It's very strange that one works and the other does not especially since they're from the same CA and presenting the same information. (Just different common

RE: SSL with multiple Tomcat instances

2009-08-26 Thread Don Prezioso
Sent: Wednesday, August 26, 2009 5:15 PM To: Tomcat Users List Subject: RE: SSL with multiple Tomcat instances When I connect to webui.ashland.edu I get the message in msg1.jpg. When I click on 'More Information...', I get the message in msg2.jpg When I click on 'Certificate Details...' I get what

Re: SSL with multiple Tomcat instances

2009-08-26 Thread Crypto Sal
-Original Message- From: Don Prezioso Sent: Wednesday, August 26, 2009 5:15 PM To: Tomcat Users List Subject: RE: SSL with multiple Tomcat instances When I connect to webui.ashland.edu I get the message in msg1.jpg. When I click on 'More Information...', I get the message in msg2.jpg When I click

RE: SSL with multiple Tomcat instances

2009-08-26 Thread Don Prezioso
for all your help. Don -- Donald Prezioso Director of Administrative I.T. Ashland University Ashland, Ohio From: Crypto Sal [crypto@gmail.com] Sent: Wednesday, August 26, 2009 7:55 PM To: Tomcat Users List Subject: Re: SSL with multiple Tomcat instances

Re: SSL with multiple Tomcat instances

2009-08-26 Thread Crypto Sal
Prezioso Director of Administrative I.T. Ashland University Ashland, Ohio From: Crypto Sal [crypto@gmail.com] Sent: Wednesday, August 26, 2009 7:55 PM To: Tomcat Users List Subject: Re: SSL with multiple Tomcat instances Don, ipsCA is having some issues

RE: SSL with multiple Tomcat instances

2009-08-25 Thread Don Prezioso
of Administrative I.T. Ashland University Ashland, Ohio -Original Message- From: Crypto Sal [mailto:crypto@gmail.com] Sent: Monday, August 24, 2009 8:31 PM To: Tomcat Users List Subject: Re: SSL with multiple Tomcat instances Hi Don, A few questions: 1) Does server.xml reference

Re: SSL with multiple Tomcat instances

2009-08-25 Thread Crypto Sal
Don, No problem. You're seeing valid output and yes a Root certificate is self-signed. As per the TLS protocol, it's optional and doesn't need to be there for things to function. What's strange is it's the same output as the webadvisor instance, outside of the FQDN entries of course. When

RE: SSL with multiple Tomcat instances

2009-08-24 Thread Don Prezioso
-- Don Prezioso Director of Administrative I.T. Ashland University Ashland, Ohio -Original Message- From: Crypto Sal [mailto:crypto@gmail.com] Sent: Thursday, August 20, 2009 8:00 PM To: Tomcat Users List Subject: Re: SSL with multiple Tomcat instances Hi Don, Is this Tomcat

Re: SSL with multiple Tomcat instances

2009-08-24 Thread Crypto Sal
: Thursday, August 20, 2009 8:00 PM To: Tomcat Users List Subject: Re: SSL with multiple Tomcat instances Hi Don, Is this Tomcat for Windows or Tomcat for a UNIX variant? Have you verified the keystore as correct via * keytool -v -list -keystore KEYSTORE_PATH/FILE* ? (Redirect that text to a file

Re: SSL with multiple Tomcat instances

2009-08-20 Thread Peter Crowther
2009/8/20 Don Prezioso dp...@ashland.edu: I have two instances of Tomcat 5.5 set up on a Red Hat box, each using separate IP addresses. I have obtained two certificates, one for each instance, and have put them in separate keystores. Both certificates are from IPSCA and both keystores have

RE: SSL with multiple Tomcat instances

2009-08-20 Thread Don Prezioso
] On Behalf Of Peter Crowther Sent: Thursday, August 20, 2009 4:40 PM To: Tomcat Users List Subject: Re: SSL with multiple Tomcat instances 2009/8/20 Don Prezioso dp...@ashland.edu: I have two instances of Tomcat 5.5 set up on a Red Hat box, each using separate IP addresses. I have obtained two

Re: SSL with multiple Tomcat instances

2009-08-20 Thread Crypto Sal
...@googlemail.com [mailto:peter.crowth...@googlemail.com] On Behalf Of Peter Crowther Sent: Thursday, August 20, 2009 4:40 PM To: Tomcat Users List Subject: Re: SSL with multiple Tomcat instances 2009/8/20 Don Preziosodp...@ashland.edu: I have two instances of Tomcat 5.5 set up on a Red Hat box, each

Re: SSL with multiple Tomcat instances

2009-08-20 Thread Ben Stringer
Any ideas on why I am only getting the warning only on the second instance? I can't believe it is an issue with IPSCA since the first instance does not exhibit the problem. Hi Don, Are you certain that each tomcat instance is bound to a seperate IP? (netstat -anp | grep java is useful for