jcorso1313
asked on
Godaddy Certificate problem Tomcat 7.0.57
Hi,
I have a seemingly normal basic 7.0.57 Tomcat WebServer built. I have done a few others without this problem...
Ordered Godaddy cert after running the CSR and Keystore command below, and upon recieving the zip file, I ran the last 3 commands of the list. This has worked on other windows 2012 servers and I havent had to jump through the hoops that seems apparent with this one for some reason.
The current error when going to the site is as follows.
"A secure connection cannot be established because this site uses an unsupported protocol."
Error code: ERR_SSL_VERSION_OR_CIPHER_ MISMATCH
I installed all three certs, root, then intermed, then site cert. I even tried the cross cert one time, with no luck...
Here are the commands I ran.
__________________________ __________ _________
"c:\program files\Java\jre7\bin\keytoo l" -keysize 2048 -genkey -alias tomcat -keyalg RSA -keystore c:\tomcat.keystore
"c:\program files\Java\jre7\bin\keytoo l" -certreq -keyalg RSA -alias tomcat -file c:\cert\csr.csr -keystore c:\tomcat.keystore
"c:\program files\Java\jre7\bin\keytoo l" -import -alias root -keystore "c:\tomcat.keystore" -trustcacerts -file "c:\gd_bundle-g2-g1.crt"
"c:\program files\Java\jre7\bin\keytoo l" -import -alias intermed -keystore "c:\tomcat.keystore" -trustcacerts -file "c:\gdig2.crt"
"c:\program files\Java\jre7\bin\keytoo l" -import -alias tomcat -keystore "c:\tomcat.keystore" -trustcacerts -file "c:\xyzxyzxyzxyz.crt"
Any help would be greatly appreciated.
Thanks,
I have a seemingly normal basic 7.0.57 Tomcat WebServer built. I have done a few others without this problem...
Ordered Godaddy cert after running the CSR and Keystore command below, and upon recieving the zip file, I ran the last 3 commands of the list. This has worked on other windows 2012 servers and I havent had to jump through the hoops that seems apparent with this one for some reason.
The current error when going to the site is as follows.
"A secure connection cannot be established because this site uses an unsupported protocol."
Error code: ERR_SSL_VERSION_OR_CIPHER_
I installed all three certs, root, then intermed, then site cert. I even tried the cross cert one time, with no luck...
Here are the commands I ran.
__________________________
"c:\program files\Java\jre7\bin\keytoo
"c:\program files\Java\jre7\bin\keytoo
"c:\program files\Java\jre7\bin\keytoo
"c:\program files\Java\jre7\bin\keytoo
"c:\program files\Java\jre7\bin\keytoo
Any help would be greatly appreciated.
Thanks,
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
where did the client get its certificate? if from a local ca did you add the root and issuing CA certificates to the trusted certificate root store?
Setup differs. Yours is correct for apache java connector. If you install tcnative apr connector you need to use OpeNSSL crt/key/chain.
ASKER
Download root/intermed from repository