-
1. Re: Basic problem with HTTPS
viren Jan 28, 2005 5:10 AM (in response to pemorob)Same Here,
I followed the documentation and couple of other examples on the web, but still I am not able to establish HTTPS.
I am using jboss-4.0.0RC1
thanks in advance
vire -
2. Re: Basic problem with HTTPS
sj_bennett Feb 8, 2005 9:04 PM (in response to pemorob)Try this:
The keystore should go in
D:\jboss-3.2.3\server\default\conf
Then your path to the keystore file should bekeystoreFile="${jboss.server.home.dir}/conf/chap8.keystore"
steve -
3. Re: Basic problem with HTTPS
pemorob Feb 8, 2005 9:11 PM (in response to pemorob)I tried that but with no success.
Rob -
4. Re: Basic problem with HTTPS
sj_bennett Feb 8, 2005 9:58 PM (in response to pemorob)Mine works and this is what is in my server.xml file.
<Connector port="443" address="${jboss.bind.address}" maxThreads="100" minSpareThreads="5" maxSpareThreads="15" scheme="https" secure="true" clientAuth="false" redirectPort="8443" keystoreFile="${jboss.server.home.dir}/conf/chap8.keystore" keystorePass="rmi+ssl" sslProtocol = "TLS" /> <Connector port="8443" address="${jboss.bind.address}" maxThreads="100" minSpareThreads="5" maxSpareThreads="15" scheme="https" secure="true" clientAuth="false" keystoreFile="${jboss.server.home.dir}/conf/chap8.keystore" keystorePass="rmi+ssl" sslProtocol = "TLS" />
Then I don't use the ':8443' on the URL string. I do this because using port 8443 didn't work through our firewall.
steve -
5. Re: Basic problem with HTTPS
pemorob Feb 22, 2005 12:50 AM (in response to pemorob)Thanks for replying.
I have tried the config you suggested but with no luck.
I've been running 'netstat -a' commands and it looks like a socket on the 8443 port is being opened but then it times out.
I think the problem is in having something reading from the port.
My understanding is that the WebServer service (as defined below) should be reading from that port. Is that right ? If that is right, any idea why it's not doing anything<mbean code="org.jboss.web.tomcat.tc4.EmbeddedTomcatService" name="jboss.web:service=WebServer"> <attribute name="Java2ClassLoadingCompliance">true</attribute> <attribute name="LenientEjbLink">true</attribute> <attribute name="UseJBossWebLoader">true</attribute> <attribute name="SubjectAttributeName">j_subject</attribute> <attribute name="SnapshotMode">instant</attribute> <!-- you may switch to "interval" --> <attribute name="SnapshotInterval">3000</attribute> <attribute name="Config"> <Server> <Service name="JBoss-Tomcat"> <Engine name="MainEngine" defaultHost="localhost"> <Logger className="org.jboss.web.tomcat.Log4jLogger" verbosityLevel="debug" category="org.jboss.web.localhost.Engine"/> <Host name="localhost"> <!-- Access logger --> <Valve className="org.apache.catalina.valves.AccessLogValve" prefix="localhost_access" suffix=".log" pattern="common" directory="${jboss.server.home.dir}\log"/> <!-- This valve clears any caller identity set by the realm and provides access to the realm about the existence of an authenticated caller to allow a web app to run with a realm that support unauthenticated identities. It also establishes any run-as principal for the servlet being accessed. --> <Valve className="org.jboss.web.tomcat.security.SecurityAssociationValve"/> <!-- Default context parameters --> <DefaultContext cookies="true" crossContext="true" override="true"/> </Host> </Engine> <!-- A HTTP/1.1 Connector on port 8080 --> <Connector className="org.apache.coyote.tomcat4.CoyoteConnector" address="${jboss.bind.address}" port="8080" minProcessors="5" maxProcessors="100" enableLookups="true" acceptCount="10" debug="10" redirectPort="8443" connectionTimeout="20000" useURIValidationHack="false"/> <!-- SSL/TLS Connector configuration using the SSL domain keystore --> <Connector port="8443" address="${jboss.bind.address}" maxThreads="100" minSpareThreads="5" maxSpareThreads="15" scheme="https" secure="true" clientAuth="false" keystoreFile="${jboss.server.home.dir}/conf/server.keystore" keystorePass="tc-ssl" sslProtocol = "TLS" /> </Service> </Server> </attribute> <depends>jboss:service=TransactionManager</depends> </mbean>
-
-
7. Re: Basic problem with HTTPS
romm Apr 20, 2005 10:34 AM (in response to pemorob)Hello all...
I am experiencing a similar problem with https... I have followed the documentation for JBoss 4 to enable SSL, and am also not able to establish a secure connection with jmx for testing. Does the keystore have to be named "chap8.keystore?
Thanks,