1 Reply Latest reply on Feb 1, 2005 2:28 PM by starksm64

    Alternate security providers

    mcorey
    mcorey Jan 31, 2005 6:00 PM

      Is there any way in the Tomcat/JBossWeb SSL configuration to indicate a security provider? I have a situation where I have a hardware SSL accelerator that has it's own JCE provider, but the only way I can currently use it with Tomcat/JBossWeb is to configure it as my default security provider (configure it as 'security.provider.1' in the java.security file)... Unfortunately, I can't currently configure my security this way, because I use encryption in other parts of my app that are not compatable with the accelerator...

      In code, it's easy to specify an alternate provider, however I need someway in Tomcat's server.xml file to enter this information, and I'm not sure if that exists as-is...

      M

      • 2524 Views
      • Tags:
        • 1. Re: Alternate security providers
          starksm64
          starksm64 Feb 1, 2005 2:28 PM (in response to mcorey)

          Look at providing your own org.apache.tomcat.util.net.SSLImplementation:

          <Connector port="8443" address="${jboss.bind.address}"
 maxThreads="100" minSpareThreads="5" maxSpareThreads="15"
 scheme="https" secure="true" clientAuth="false"
 keystoreFile="${jboss.server.home.dir}/conf/chap8.keystore"
 keystorePass="rmi+ssl" sslProtocol = "TLS"
 SSLImplementation="x.y.z.MagicSSLImpl"
 />
</Connector>



            • Actions