Just an update on this issue. We decided to install the most up to date version of Tomcat including the native libraries and troubleshoot from there.
Once everything was installed and came up fine we edited the server.xml file to enable SSL and we definitely were getting the right certificate but it was still giving us an error that the certificate was not trusted. For some reason it was not seeing the entire certificate chain. We did some research and found we needed to add the following setting in the server.xml: SSLCACertificateFile="D:\certs\MTG_CA.cer" Once we did restarted Tomcat everything works as expected. Thanks again for all your help. -----Original Message----- From: Caldarale, Charles R [mailto:chuck.caldar...@unisys.com] Sent: Wednesday, June 29, 2011 2:22 PM To: Tomcat Users List Subject: RE: Problem with SSL certificate > From: D'Anna, Rich (PHH) [mailto:Rich.D'a...@phh.com] > Subject: RE: Problem with SSL certificate > I'm guessing we are using the native APR connector based > on the configuration we selected for the server.xml. Better to say you're trying to use it, since the logs indicate you're not. > I'm guessing from the error message we need to install the APR based > Tomcat Native Library? Is that correct? Correct. You should use the one for the Tomcat version you're running, which is included with the Tomcat downloads for Windows. Also need to know if you're using a 32- or 64-bit JVM, since the APR code must be compiled for the appropriate environment. Personally, I would take the opportunity to upgrade Tomcat to the current version, rather than using one that's three years old. The current versions include both 32- and 64-bit DLLs, and install the proper one automatically. If you really want to stick with 6.0.18 and are running a 32-bit JVM, get the .zip download from here: http://archive.apache.org/dist/tomcat/tomcat-6/v6.0.18/bin/ Copy the tcnative-1.dll from that into your Tomcat's bin directory. If you're using a 64-bit JVM, please repost, since finding the three-year old version of tcnative for 64 bit environments is a bit trickier. - Chuck THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY MATERIAL and is thus for use only by the intended recipient. If you received this in error, please contact the sender and delete the e-mail and its attachments from all computers. --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
