Solved

InCommon SSL certificate(SHA-2) issue on Tomcat 7

Posted on 2014-11-06
8
1,054 Views
Last Modified: 2014-11-15
Greeting,
I installed the InCommon SSL certificate on Tomcat 7.0 before without any issues. Now tried to install SSL SHA-2 certificate but got error say untrusted....
I imported the intermediate certificate 1st then the ssl certificate, modified the server.xml ,restart apache....
Any suggestions?

Thanks.
0
Comment
Question by:mrong
  • 5
  • 3
8 Comments
 
LVL 61

Expert Comment

by:gheist
ID: 40427476
Where you see the error? In IE6 or tomcat logs?
0
 

Author Comment

by:mrong
ID: 40427489
In ie6. Will check tomcat log tomorrow.
0
 
LVL 61

Expert Comment

by:gheist
ID: 40427803
Error in obsolete browser should be ignored. There is no way to fix IE6
0
 

Author Comment

by:mrong
ID: 40428194
sorry, I use IE 9.
0
Complete VMware vSphere® ESX(i) & Hyper-V Backup

Capture your entire system, including the host, with patented disk imaging integrated with VMware VADP / Microsoft VSS and RCT. RTOs is as low as 15 seconds with Acronis Active Restore™. You can enjoy unlimited P2V/V2V migrations from any source (even from a different hypervisor)

 

Author Comment

by:mrong
ID: 40428232
when I used keytool to import domain certificate, I got the following error:
Failed to established chain from reply.
0
 

Author Comment

by:mrong
ID: 40428248
when I look at the certificate from the IE9 browser, it says the CA root certificate is not trusted
0
 

Author Comment

by:mrong
ID: 40428391
The problem has been solved. I had  to split the intermediate certificate into 2 and install them one by one.
Thanks.
0
 
LVL 61

Accepted Solution

by:
gheist earned 500 total points
ID: 40428792
Can you be more verbose and accurate?
XP or server 2003 will not support SHA2 either. (Firefox and Chrome has own crypto frameworks)

There are at least 3 intermediate certificates needede before your certificate  is trusted everywhere:
https://support.comodo.com/index.php?/Default/Knowledgebase/Article/View/620/1/which-is-root-which-is-intermediate
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

SSL stands for “Secure Sockets Layer” and an SSL certificate is a critical component to keeping your website safe, secured, and compliant. Any ecommerce website must have an SSL certificate to ensure the safe handling of sensitive information like…
Since pre-biblical times, humans have sought ways to keep secrets, and share the secrets selectively.  This article explores the ways PHP can be used to hide and encrypt information.
This tutorial gives a high-level tour of the interface of Marketo (a marketing automation tool to help businesses track and engage prospective customers and drive them to purchase). You will see the main areas including Marketing Activities, Design …
This Micro Tutorial demonstrates using Microsoft Excel pivot tables, how to reverse engineer competitors' marketing strategies through backlinks.

867 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

16 Experts available now in Live!

Get 1:1 Help Now