Tomcat/Apache will not start on Netware 6.5 SP5

Hello,

We recently migrated a number of servers to the latest Netware 6.5.  I think I'm having a certificate issue with some of the servers.  New server installs work fine, and "some" of the other migrations also work fine.

However, on at least two servers now, I am not able to get Apache and Tomcat to load.  As such, I cannot use iManager or other web-based products on those particular servers.  

The autoexec has the following entries for these components:
AP2WEBUP
#Apache2 is now the admin server
ADMSRVUP
# tc4admin begin
SEARCH ADD SYS:/tomcat/4/bin
tcadmup.ncf
# tc4admin end
# tomcat4 begin
sys:/tomcat/4/bin/tomcat4.ncf
# tomcat4 end

After executing tcadmup, I can see the server attempt to start it (in the logger screen), but it eventually reads:

"Stopping server Netware Administration Tomcat
java:  Class org.apache.catalina.startup.bootstrap exited with Status 1"

Using the overlay CDs, all products have been reinstalled and it didn't help.  

Any ideas or any other information I can provide?

TIA
jfahernAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

ShineOnCommented:
You're wondering about certificates - any indication that's got you pointed in that direction?

Did you re-create the server KMO's after you upgraded the certificate server?  Perhaps that's the issue.  

Have you tried PKIDIAG to see if you have cert problems?
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
jfahernAuthor Commented:
ShineOn, thanks much!  Running PKIDIAG in fix mode actually took care of everything on its own!  It looked like two of the certificates were expired.  I'm surprised that would have stopped everything from even loading up?  Anyway, if you're curious, I'll post the original text which led me to certificates.  It tells me to run tckeygen which I have, but it never worked.  Apparently running pkidiag after that resolves the issue.  Thanks again.

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
tccheck: Tomcat found problems with your security certificate.                  
Please re-export sys:/Public/RootCert.der and then                              
execute sys:/system/tckeygen.ncf                                                
LDAP connectivity not found on ldap://localhost:636                            
Please load NLDAP and then manually execute command: sys:/tomcat/4/bin/startup  
                                                                               
If your server host certificates have change recently, executing                
sys:/system/tckeygen.ncf may be needed to restore secure LDAP                  
connectivity                                                                    
tccheck: Tomcat found problems with your security certificate.                  
Please re-export sys:/Public/RootCert.der and then                              
execute sys:/system/tckeygen.ncf                                                
LDAP connectivity not found on ldap://localhost:636                            
Please load NLDAP and then manually execute command: sys:/tomcat/4/bin/startup  
        -config sys:/adminsrv/conf/admin_tomcat.xml                            
If your server host certificates have change recently, executing                
sys:/system/tckeygen.ncf may be needed to restore secure LDAP                  
connectivity                                                                    
java: Class com.novell.application.tomcat.util.tccheck.LDAPVerifier exited succe
ssfully                                                                        
java: Class com.novell.application.tomcat.util.tccheck.LDAPVerifier exited succe
ssfully  
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
0
ShineOnCommented:
The tckeygen thing was because tomcat/java wants to connect using secure LDAP, and it stores the certificate info separately from the regular certificate store, for some reason.

Since the cert info didn't really change, fixing the KMO's so they weren't expired fixed the problem.

If you had had to delete and re-create your KMO's, you'd probably have had to rerun the tckeygen to register the new cert in tomcat/java, but since the cert just needed renewing, that wasn't necessary.

Glad it's working for you.
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Novell Netware

From novice to tech pro — start learning today.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.