RE: Install CA signed certificate on Tomcat 9

Fri, 30 Sep 2022 04:17:36 -0700 

Hi Chris,

I executed the command that you asked and below is it’s output.

[cid:image001.png@01D8D4E9.CF1FDCF0]

SSLHostConfig details :
<SSLHostConfig protocols="TLSv1.2">
            <Certificate certificateKeystoreFile="C:/SSL/myserver.keystore"
                                                          
certificateKeystorePassword=" " />
        </SSLHostConfig>

I am from Bengaluru IST time zone and can work with you on a screenshare if we 
need to, please let me know.

A bit of background : Few months back I upgraded our existing SAP BO BI 
Platform 4.2 to 4.3, on the upgraded server I successfully installed CA signed 
certificate. This time I did a fresh install of SAP BI 4.3 on a windows box and 
duplicated same steps to install CA certificate on Tomcat during my 4.3 upgrade 
but this time Tomcat errors out and am unable to get the Central Management 
Console (CMC) login page.

What works now : am able to access CMC login page using the self-signed 
certificate and can login successfully but as ‘Not Secure’ site.

Thanks,
Veni

From: Christopher Schultz <ch...@christopherschultz.net>
Sent: Friday, September 30, 2022 3:23 AM
To: users@tomcat.apache.org
Subject: Re: Install CA signed certificate on Tomcat 9

Veni, On 9/29/22 13: 21, Janardhanan, Veni wrote: > Hi, > > My Tomcat version 
is 9. I am trying to install a CA signed certificate on Tomcat, tomcat error 
log says Invalid Keystore format. > Followed instructions given in ‍ ‍ ‍ ‍ ‍ ‍
ZjQcmQRYFpfptBannerStart
This Message Is From an Untrusted Sender
You have not previously corresponded with this sender.
ZjQcmQRYFpfptBannerEnd

Veni,



On 9/29/22 13:21, Janardhanan, Veni wrote:

> Hi,

>

> My Tomcat version is 9. I am trying to install a CA signed certificate on 
> Tomcat, tomcat error log says Invalid Keystore format.

> Followed instructions given in 
> https://urldefense.com/v3/__https://tomcat.apache.org/tomcat-9.0-doc/ssl-howto.html*Installing_a_Certificate_from_a_Certificate_Authority__;Iw!!B5G2v5lgyw!ItNasjh8dSW9-I0Yf5oKgweZWrpL81ZZ3ef0g-qXo0X0budUzFCWkouE0e9b1a19GI7Pz2g2DIzzeaI6lvZvtSql3o1c$<https://urldefense.com/v3/__https:/tomcat.apache.org/tomcat-9.0-doc/ssl-howto.html*Installing_a_Certificate_from_a_Certificate_Authority__;Iw!!B5G2v5lgyw!ItNasjh8dSW9-I0Yf5oKgweZWrpL81ZZ3ef0g-qXo0X0budUzFCWkouE0e9b1a19GI7Pz2g2DIzzeaI6lvZvtSql3o1c$>



What kind of keystore are you using? Please post the output of this command:



$ keytool -list -keystore [path to keeystore]



Please post your <SSLHostConfig> with all secrets removed.



-chris





---------------------------------------------------------------------

To unsubscribe, e-mail: 
users-unsubscr...@tomcat.apache.org<mailto:users-unsubscr...@tomcat.apache.org>

For additional commands, e-mail: 
users-h...@tomcat.apache.org<mailto:users-h...@tomcat.apache.org>

Reply via email to