> From: Petr Nemecek [mailto:p...@cmail.cz] > Subject: Troubles to configure SSL
> After the startup I could navigate to http://localhost:8082/, but > https://localhost:8445/ doesn't work. What does "doesn't work" mean? Did the building catch fire? Is the Windows firewall configured to allow traffic through port 8445? Have you examined all of the Tomcat logs for any issues? > P.S. [Tomcat 7.0.50, Windows Server 2012 R2] Good to know; thanks. > <Connector port="8445" protocol="org.apache.coyote.http11.Http11NioProtocol" > SSLEnabled="true" > maxThreads="150" scheme="https" secure="true" > clientAuth="false" sslProtocol="TLS" > URIEncoding="UTF-8" > keystoreFile="c:\@data\keystore\.keystore" > keystorePass="abcdef" /> The @ symbol in the keystoreFile path is a bit strange; are you sure that's correct? > II 24, 2014 8:51:04 ODP. org.apache.catalina.core.AprLifecycleListener init > INFO: Loaded APR based Apache Tomcat Native library 1.1.29 using APR version > 1.4.8. > II 24, 2014 8:51:04 ODP. org.apache.catalina.core.AprLifecycleListener init > INFO: APR capabilities: IPv6 [true], sendfile [true], accept filters [false], > random [true]. Since you have APR installed, you could use that for SSL traffic - it's more efficient than pure Java encryption, but it does require a different certificate file format. There's not much point in running APR for your non-SSL <Connector>. Look here for the configuration differences: http://tomcat.apache.org/tomcat-7.0-doc/config/http.html#SSL_Support - Chuck THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY MATERIAL and is thus for use only by the intended recipient. If you received this in error, please contact the sender and delete the e-mail and its attachments from all computers. --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org