Solved

InCommon SSL certificate(SHA-2) issue on Tomcat 7

Posted on 2014-11-06
8
1,082 Views
Last Modified: 2014-11-15
Greeting,
I installed the InCommon SSL certificate on Tomcat 7.0 before without any issues. Now tried to install SSL SHA-2 certificate but got error say untrusted....
I imported the intermediate certificate 1st then the ssl certificate, modified the server.xml ,restart apache....
Any suggestions?

Thanks.
0
Comment
Question by:mrong
  • 5
  • 3
8 Comments
 
LVL 62

Expert Comment

by:gheist
ID: 40427476
Where you see the error? In IE6 or tomcat logs?
0
 

Author Comment

by:mrong
ID: 40427489
In ie6. Will check tomcat log tomorrow.
0
 
LVL 62

Expert Comment

by:gheist
ID: 40427803
Error in obsolete browser should be ignored. There is no way to fix IE6
0
Windows Server 2016: All you need to know

Learn about Hyper-V features that increase functionality and usability of Microsoft Windows Server 2016. Also, throughout this eBook, you’ll find some basic PowerShell examples that will help you leverage the scripts in your environments!

 

Author Comment

by:mrong
ID: 40428194
sorry, I use IE 9.
0
 

Author Comment

by:mrong
ID: 40428232
when I used keytool to import domain certificate, I got the following error:
Failed to established chain from reply.
0
 

Author Comment

by:mrong
ID: 40428248
when I look at the certificate from the IE9 browser, it says the CA root certificate is not trusted
0
 

Author Comment

by:mrong
ID: 40428391
The problem has been solved. I had  to split the intermediate certificate into 2 and install them one by one.
Thanks.
0
 
LVL 62

Accepted Solution

by:
gheist earned 500 total points
ID: 40428792
Can you be more verbose and accurate?
XP or server 2003 will not support SHA2 either. (Firefox and Chrome has own crypto frameworks)

There are at least 3 intermediate certificates needede before your certificate  is trusted everywhere:
https://support.comodo.com/index.php?/Default/Knowledgebase/Article/View/620/1/which-is-root-which-is-intermediate
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

If your site has a few sections that need to be secure when data is transmitted between the server and local computer, such as a /order/ section for ordering or /customer/ which contains customer data, etc it would of course be recommended to secure…
SSL stands for “Secure Sockets Layer” and an SSL certificate is a critical component to keeping your website safe, secured, and compliant. Any ecommerce website must have an SSL certificate to ensure the safe handling of sensitive information like…
Although Jacob Bernoulli (1654-1705) has been credited as the creator of "Binomial Distribution Table", Gottfried Leibniz (1646-1716) did his dissertation on the subject in 1666; Leibniz you may recall is the co-inventor of "Calculus" and beat Isaac…
Nobody understands Phishing better than an anti-spam company. That’s why we are providing Phishing Awareness Training to our customers. According to a report by Verizon, only 3% of targeted users report malicious emails to management. With compan…

776 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question