We have a number of Windows 2008 R2 servers running Tomcat 7, and have not been able to disable SSL on them using the recommended fixes I've tried. The servers are not running APR.
This is our present server.xml. It has changed as I've tried the different recommendations, but this is the current incarnation. Is there something that I'm missing here?
<Connector SSLEnabled="true" acceptCount="100" clientAuth="false"
disableUploadTimeout="true" enableLookups="false" maxThreads="150"
port="443" keystoreFile="c:\keystore\.keystore" keystorePass="!Aps1@9_sc$"
I should note that these Windows servers have not had the native Windows SSL implementation disabled. Does Tomcat use the underlying native Windows SSL, or is it integrated in the product?