I tried to buy as tomcat5 book this weekend but could not find one the only book they had was a tomcat 4. In the ssl section they did talk about moving the keystore file or adding a path statement during the creation of the keystore. They also talked a little about the importance of the default locations. When I talked to a guy from verisign during the creation he said that was one of the differences of 5 over 4. That it did not matter where the keystore or the cert was placed as long as there were no errors during the install. Right now the keystore and certs are placed off the root something like the c:\j2sdk1.4.2_06\bin\. This location is the same directory that holds the keytool.exe file that I used to create the keystore. The keytool.exe just dumped everything into its home location. The server is under c:\apache\tomcat not sure if this is the root problem or if I am just barking at the moon.
Christopher W. Hosler Network Administrator Ingham County MIS Department Email [EMAIL PROTECTED] As water reflects the face So a mans heart reflects the man >>> [EMAIL PROTECTED] 2/14/2005 9:27:37 AM >>> > From: Chris Hosler [mailto:[EMAIL PROTECTED] > Are > there certain directories that should hold the keystore file and other > related SSL files.? Does Tomcat expect to see the keystore file and > certs in a certain default location under tomcat ? In the past I have > been told no from Verisign but from the docs that I have read it sure > looks that way. Not as far as I can see. I'm on Windows, and Tomcat 4.0 (not yet done this on 5.x), and followed http://jakarta.apache.org/tomcat/tomcat-4.0-doc/ssl-howto.html specifying '-keystore c:\keys\keystore'. I then added the following to my server.xml: <Connector className="org.apache.coyote.tomcat4.CoyoteConnector" port="8443" minProcessors="5" maxProcessors="75" enableLookups="true" acceptCount="100" debug="0" scheme="https" secure="true" useURIValidationHack="false" disableUploadTimeout="true"> <Factory className="org.apache.coyote.tomcat4.CoyoteServerSocketFactory" clientAuth="false" protocol="TLS" keystoreFile="c:\keys\keystore" keystorePass="..."/> </Connector> Works for me, but your setup may well vary. - Peter --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]