Hi Antonio, So you mean this error cannot be fixed? All self-signed certificates have this problem when a browser accesses the page using ssl?
thanks --- On Wed, 6/5/09, Antonio Vidal Ferrer <antonio.vi...@globalia-sistemas.com> wrote: > From: Antonio Vidal Ferrer <antonio.vi...@globalia-sistemas.com> > Subject: RE: invalid certificate > To: "'Tomcat Users List'" <users@tomcat.apache.org> > Date: Wednesday, 6 May, 2009, 1:37 PM > Melanie: > > Your certificate is invalid, as your navigator does not > know the Certificate Authority who issued your server > certificate (In this case, you). It's not related to > expiration dates. You can find nice guides (using openssl > :( ) here: http://www.tc.umn.edu/~brams006/selfsign.html and > here: http://marc.info/?l=tomcat-user&m=106293430225790&w=2 > that can help you to understand the process, and of course > with the problem you are having > > Best, > > Toni > > > > > > -----Original Message----- > From: Melanie Pfefer [mailto:melanie_pfe...@yahoo.co.uk] > > Sent: miércoles, 06 de mayo de 2009 12:04 > To: users@tomcat.apache.org > Subject: invalid certificate > > > Hi, > > I generated a new certificate according to > http://tomcat.apache.org/tomcat-6.0-doc/ssl-howto.html > > First step: > keytool -genkey -alias tomcat -keyalg RSA -keystore > /usr/local/tomcat/.keystore > > Second step: > > in servers.xml: > > <Connector > protocol="org.apache.coyote.http11.Http11Protocol" > port="8443" > minSpareThreads="5" maxSpareThreads="75" > > enableLookups="true" > disableUploadTimeout="true" > > acceptCount="100" maxThreads="200" > > scheme="https" secure="true" > SSLEnabled="true" > > keystoreFile="/usr/local/tomcat/.keystore" > keystorePass="password" > > clientAuth="false" sslProtocol="TLS"/> > > > I am getting an error that the certificate is not valid > when I access the https URL: > > The error message is: uses an invalid security certificate > > > When I list the certificate: > > Valid from: Wed May 06 11:52:13 MEST 2009 until: Tue Aug 04 > 11:52:13 MEST 2009 > > Can you please shed some light on this? > > thanks > > > > > > --------------------------------------------------------------------- > To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org > For additional commands, e-mail: users-h...@tomcat.apache.org > > > --------------------------------------------------------------------- > To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org > For additional commands, e-mail: users-h...@tomcat.apache.org > > --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org