Have you tried telneting to port 8443? If you can't even get a connection there, probably the listener has not started. If the listener has not started, a possible problem may be that the securityDomain you specify doesn't exist or can't be looked up. Have you tried with a basic certificate registry to see that the SSL listener is operational. If it works then Tomcat is ok and you have a problem with the security domain setting. This should help narrow down the problem.
OK so telnet works, and jboss is listening on the port, but still no joy. If it means anything the jaas domain I've set up appears under the JNDI view of the console.
Can you point me at how to "try with a basic certificate registry" and how to test it?
Go to here for creating certificates:
Your jboss-service.xml for jbossweb-tomcat.sar is going to look like this instead:
clientAuth="false" protocol="TLS" />
Sorry had to mangle the keystore bit so the forum wouldn't substitute things. Replace 'dot' with an actual '.'.
Oops, turns out (of course) that there was a difference between my configuration with the bundle and the one I built. It's the HttpConnector that works, the CoyoteConnector seems not to work.
Thanx for your help
OK finally I'm at the bottom of this more or less. You use jakarta's own org.apache.coyote.tomcat4.CoyoteServerSocketFactory, and with the CoyoteConnector this works great.
What I found was that with the JBoss org.jboss.web.catalina.security.SSLServerSocketFactory that it only seems to work with HttpConnector.
I like your way much better - keep tomcat stuff in the tomcat family as it were, and get to use the supposedly better Connector.
Thanks again jon