Keep Server Online
If you find the Apache Lounge, the downloads and overall help useful, please express your satisfaction with a donation.
or
A donation makes a contribution towards the costs, the time and effort that's going in this site and building.
Thank You! Steffen
Your donations will help to keep this site alive and well, and continuing building binaries. Apache Lounge is not sponsored.
| |
|
Topic: tomcat 7 SSL issue |
|
Author |
|
andrewm659
Joined: 04 Oct 2015 Posts: 2
|
Posted: Mon 04 Mar '24 17:54 Post subject: tomcat 7 SSL issue |
|
|
Hello I'm working with a friend on an old ubuntu 14 server running tomcat 7. We can't get the SSL to work with tomcat 7. It is a wildcard certificate.
I have the SSL set up in my /etc/tomcat/server.xml
<Connector protocol="org.apache.coyote.http11.Http11NioProtocol"
port="8443" SSLEnabled="true" maxThreads="200"
scheme="https" secure="true"
SSLCertificateFile="/etc/ssl/path/to/SSL.crt"
SSLCertificateKeyFile="/etc/ssl/path/to/priv.key"
SSLCertificateChaineFile="/etc/ssl/intermediate_or_chain/SectigoRSADomainValidationSecureServerCA.crt"
clientAuth="false" sslProtocol="TLS" />
However it is not working. I don't have any war/jar running at the moment.
Not sure what I am doing wrong.
There are no errors in the logs that I can see that would point to something. I could load a jar file like PWM or something else that is REALLY simple. Not sure what to test though. |
|
Back to top |
|
tangent Moderator
Joined: 16 Aug 2020 Posts: 348 Location: UK
|
Posted: Tue 05 Mar '24 16:33 Post subject: |
|
|
Since Tomcat 7 is several years old now (plus out of support), I'd recommend setting up Apache web server as a secure reverse proxy over your Tomcat instance, rather than trying to get SSL working natively on Tomcat. This would separate your SSL configuration, certificate handling and maintenance away from your application server, and the Java version it currently runs under.
Ok, so you have to set up Apache, but there's lots of information and examples on how to do this out there. Search this site for "ajp and proxy" to see any number of posts, e.g. https://www.apachelounge.com/viewtopic.php?t=7727
PS - I used to the sample.war file from the Tomcat sample application as a default deployment, to check the Tomcat instance was up and running - https://tomcat.apache.org/tomcat-7.0-doc/appdev/sample |
|
Back to top |
|
James Blond Moderator
Joined: 19 Jan 2006 Posts: 7374 Location: Germany, Next to Hamburg
|
Posted: Wed 06 Mar '24 9:50 Post subject: |
|
|
The default location of the log files is /var/log/tomcat/
There should be catalina.log and catalina.out
There you should find log messages about what went wrong. |
|
Back to top |
|
|
|
|
|
|