1 Reply Latest reply on Feb 1, 2005 2:28 PM by Scott Stark

    Alternate security providers

    Matt Corey Newbie

      Is there any way in the Tomcat/JBossWeb SSL configuration to indicate a security provider? I have a situation where I have a hardware SSL accelerator that has it's own JCE provider, but the only way I can currently use it with Tomcat/JBossWeb is to configure it as my default security provider (configure it as 'security.provider.1' in the java.security file)... Unfortunately, I can't currently configure my security this way, because I use encryption in other parts of my app that are not compatable with the accelerator...

      In code, it's easy to specify an alternate provider, however I need someway in Tomcat's server.xml file to enter this information, and I'm not sure if that exists as-is...

      M

        • 1. Re: Alternate security providers
          Scott Stark Master

          Look at providing your own org.apache.tomcat.util.net.SSLImplementation:

          <Connector port="8443" address="${jboss.bind.address}"
           maxThreads="100" minSpareThreads="5" maxSpareThreads="15"
           scheme="https" secure="true" clientAuth="false"
           keystoreFile="${jboss.server.home.dir}/conf/chap8.keystore"
           keystorePass="rmi+ssl" sslProtocol = "TLS"
           SSLImplementation="x.y.z.MagicSSLImpl"
           />
          </Connector>