Could someone share a working SSL connector snippet for Tomcat?
I am running Lucee 4.5.1.023 (Viviotech installer) on a Windows 2012 R2
machine, using Tomcat 8 as stand-alone webserver, so the HTTP connector
looks like this:
I have tried a gazillion different versions of SSL connectors without
success, e.g.
or
or
I created the keystore file using keytool and imported both the existing
crt file (assigning the alias “server” to the certificate) and the CA file
of the company issuing the certificate.
However, the best result I can produce when trying to access the site is an
error message in the browser complaining about a timeout error or a cipher
protocol error.
I’ve also been wondering whether the connector should be set up for port
8443 instead and the connector for port 443 should simply redirect to port
8443…?
You would want 443 not 8443. Hence my follow up post.
post your error log.
How did you generate your ssl cert?On Wednesday, September 2, 2015 at 6:45:54 AM UTC-4, lu...@lesener.de wrote:
Could someone share a working SSL connector snippet for Tomcat?
I am running Lucee 4.5.1.023 (Viviotech installer) on a Windows 2012 R2
machine, using Tomcat 8 as stand-alone webserver, so the HTTP connector
looks like this:
I have tried a gazillion different versions of SSL connectors without
success, e.g.
or
or
I created the keystore file using keytool and imported both the existing
crt file (assigning the alias “server” to the certificate) and the CA file
of the company issuing the certificate.
However, the best result I can produce when trying to access the site is
an error message in the browser complaining about a timeout error or a
cipher protocol error.
I’ve also been wondering whether the connector should be set up for port
8443 instead and the connector for port 443 should simply redirect to port
8443…?
Generating a new (for now: self-signed) certificate did the trick, thanks!
Apparently the import of the existing .crt file didn’t work out. Will
submit a new CSR tomorrow to get a proper cert.
Thanks again!On Wednesday, 2 September 2015 17:41:15 UTC+2, Terry Whitney wrote:
You would want 443 not 8443. Hence my follow up post.
post your error log.
How did you generate your ssl cert?
On Wednesday, September 2, 2015 at 6:45:54 AM UTC-4, lu...@lesener.de wrote:
Could someone share a working SSL connector snippet for Tomcat?
I am running Lucee 4.5.1.023 (Viviotech installer) on a Windows 2012 R2
machine, using Tomcat 8 as stand-alone webserver, so the HTTP connector
looks like this:
I have tried a gazillion different versions of SSL connectors without
success, e.g.
or
or
I created the keystore file using keytool and imported both the existing
crt file (assigning the alias “server” to the certificate) and the CA file
of the company issuing the certificate.
However, the best result I can produce when trying to access the site is
an error message in the browser complaining about a timeout error or a
cipher protocol error.
I’ve also been wondering whether the connector should be set up for port
8443 instead and the connector for port 443 should simply redirect to port
8443…?
Still no luck so far… I thought that opening port 443 for outbound
traffic in the firewall might be the thing I had overlooked, but it doesn’t
seem to make a difference yet.
Would I need to add redirectPort=“8443” to the connector?
I think of starting over with a self-signed cert instead of importing a
certificate, just to rule out any problems with the certificate itself.
rgds
LutzOn Wednesday, 2 September 2015 15:18:24 UTC+2, Terry Whitney wrote:
Sorry, too quick of most and not enough coffee this morning.
Note, just change port 8443 to port 443, then make sure port 443 is open
on the windows firewall if it is enabled for both inbound and outbound
connections.
So you would have.
On Wednesday, September 2, 2015 at 6:45:54 AM UTC-4, lu...@lesener.de wrote:
Could someone share a working SSL connector snippet for Tomcat?
I am running Lucee 4.5.1.023 (Viviotech installer) on a Windows 2012 R2
machine, using Tomcat 8 as stand-alone webserver, so the HTTP connector
looks like this:
I have tried a gazillion different versions of SSL connectors without
success, e.g.
or
or
I created the keystore file using keytool and imported both the existing
crt file (assigning the alias “server” to the certificate) and the CA file
of the company issuing the certificate.
However, the best result I can produce when trying to access the site is
an error message in the browser complaining about a timeout error or a
cipher protocol error.
I’ve also been wondering whether the connector should be set up for port
8443 instead and the connector for port 443 should simply redirect to port
8443…?
Sorry, too quick of most and not enough coffee this morning.
Note, just change port 8443 to port 443, then make sure port 443 is open on
the windows firewall if it is enabled for both inbound and outbound
connections.
So you would have.
On Wednesday, September 2, 2015 at 6:45:54 AM UTC-4, lu...@lesener.de wrote:
Could someone share a working SSL connector snippet for Tomcat?
I am running Lucee 4.5.1.023 (Viviotech installer) on a Windows 2012 R2
machine, using Tomcat 8 as stand-alone webserver, so the HTTP connector
looks like this:
I have tried a gazillion different versions of SSL connectors without
success, e.g.
or
or
I created the keystore file using keytool and imported both the existing
crt file (assigning the alias “server” to the certificate) and the CA file
of the company issuing the certificate.
However, the best result I can produce when trying to access the site is
an error message in the browser complaining about a timeout error or a
cipher protocol error.
I’ve also been wondering whether the connector should be set up for port
8443 instead and the connector for port 443 should simply redirect to port
8443…?
On Wednesday, September 2, 2015 at 6:45:54 AM UTC-4, lu...@lesener.de wrote:
Could someone share a working SSL connector snippet for Tomcat?
I am running Lucee 4.5.1.023 (Viviotech installer) on a Windows 2012 R2
machine, using Tomcat 8 as stand-alone webserver, so the HTTP connector
looks like this:
I have tried a gazillion different versions of SSL connectors without
success, e.g.
or
or
I created the keystore file using keytool and imported both the existing
crt file (assigning the alias “server” to the certificate) and the CA file
of the company issuing the certificate.
However, the best result I can produce when trying to access the site is
an error message in the browser complaining about a timeout error or a
cipher protocol error.
I’ve also been wondering whether the connector should be set up for port
8443 instead and the connector for port 443 should simply redirect to port
8443…?