Keep Server Online
If you find the Apache Lounge, the downloads and overall help useful, please express your satisfaction with a donation.
or
A donation makes a contribution towards the costs, the time and effort that's going in this site and building.
Thank You! Steffen
Your donations will help to keep this site alive and well, and continuing building binaries. Apache Lounge is not sponsored.
| |
|
 Topic: Apache 2.4.4 SSL redirect to Tomcat 7.0.33 |
|
| Author |
|
fitzpgl1
Joined: 13 May 2013
Posts: 2
Location: USA, Hawkinsville
|
 Posted: Mon 13 May '13 20:44 Post subject: Apache 2.4.4 SSL redirect to Tomcat 7.0.33 |
 |
|
Issue: Upgraded to Apache 2.4.4 and Tomcat 7.0.33. Accessing the website via HTTPS produces “Object not found” error. The error logs (server,tomcat,apache) show no errors. It was working with Apache 2.2
Server OS: Windows 2008
Apache: version 2.4.4
Tomcat: version 7.033
JRE: version 1.6.0_43
Httpd.conf
| Code: |
LoadModule jk_module modules/mod_jk.so
# mod_jk setup
<IfModule mod_jk.c>
JkWorkersFile conf/workers.properties
JkLogFile "|bin/rotatelogs.exe logs/mod_jk.log.%Y-%m-%d.txt 86400"
JkLogLevel error
JkLogStampFormat "[%a %b %d %H:%M:%S %Y] "
JkOptions +ForwardKeySize +ForwardURICompat -ForwardDirectories
JkRequestLogFormat "%w %V %T"
# Should mod_jk send SSL information to Tomcat (default is On)
JkExtractSSL On
# What is the indicator for SSL (default is HTTPS)
JkHTTPSIndicator HTTPS
# What is the indicator for SSL session (default is SSL_SESSION_ID)
JkSESSIONIndicator SSL_SESSION_ID
# What is the indicator for client SSL cipher suit (default is SSL_CIPHER)
JkCIPHERIndicator SSL_CIPHER
# What is the indicator for the client SSL certificated (default is SSL_CLIENT_CERT)
JkCERTSIndicator SSL_CLIENT_CERT
<Directory "N:/Prod/Firefox_Tomcat/">
Options Indexes FollowSymLinks
AllowOverride None
Require all granted
</Directory>
<Location /*/WEB-INF/*>
deny from all
</Location>
JkMount /Firefox/* presentation
</IfModule>
# end of mod_jk setup
|
mod note: added [ code ] tags |
|
| Back to top |
|
fitzpgl1
Joined: 13 May 2013
Posts: 2
Location: USA, Hawkinsville
|
| Posted: Thu 16 May '13 21:51 Post subject: Answer-Issue: Upgraded to Apache 2.4.4 and Tomcat 7.0.33. |
|
|
The SSL virtual method does not work in our environment. Recreating the http-ssl.conf file as follows solved our problem.
http-ssl.conf
| Code: |
##
## SSL Global Context
##
<IfModule mod_ssl.c>
AddType application/x-x509-ca-cert .crt
AddType application/x-pkcs7-crl .crl
SSLEngine On
SSLOptions +StrictRequire
<Directory "C:/WebApp">
SSLRequireSSL
</Directory>
<Directory "C:/WebApp_Tomcat">
SSLRequireSSL
</Directory>
SSLProtocol -all +TLSv1 +SSLv3
SSLCipherSuite HIGH:MEDIUM:!aNULL:+SHA1:+MD5:+HIGH:+MEDIUM
SSLSessionCache "shmcb:C:/ApacheGroup/Apache2.4.4/logs/ssl_scache(512000)"
SSLSessionCacheTimeout 300
SSLCertificateFile conf/ssl.crt/server.crt
SSLCertificateKeyFile conf/ssl.key/server.key
SSLSessionCacheTimeout 300
SSLProxyEngine off
SetEnvIf User-Agent ".*MSIE.*" ssl-unclean-shutdown
ErrorLog "|bin/rotatelogs.exe logs/SSL.log.%Y-%m-%d.txt 86400"
LogLevel warn
CustomLog logs/ssl_request_log.txt \
"%t %h %{SSL_PROTOCOL}x %{SSL_CIPHER}x \"%r\" %b"
</IfModule>
|
mod note: added [ code ] tags |
|
| Back to top |
|
|
|
|
|
|
