?

Tomcat SSL Certificate issue-SAP Business Objects

Posted on 2017-10-12
4
Low Priority
?
17 Views
Last Modified: 2017-10-16
Hi,

I have configured SSL in tomcat,i am able to access the server using https.

But i am getting the certificate error.I have create below files to resolve the issue.
 1)keystore.jks
2)tomcat.keystore
3)xxxx.csr

From certficate authority i have created certnew.cer and certnew.p7b.

I opened certnew.p7b and used sub and root certficate to create root.cer and root1.cer.bacically i converted the root certificates format to base 64 encoded x.509

Then i used below commands to sent the two certificates to keystore.

keytool -import -trustcacerts -alias Root -file "D:\XXXXXXX\root.cer" -keystore "D:\xxxxxxxx\tomcat.keystore"

keytool -import -trustcacerts -alias Root1 -file "D:\XXXXXXX\root1.cer" -keystore "D:\xxxxxxxx\tomcat.keystore"

then i merged the server certificate by using below command

keytool -import -trustcacerts -alias biuser -file "D:\XXXXX\certnew.cer" -keystore "D:\xxxxxx\tomcat.keystore"

I have modified my server.xml file in tomcat as attached. (PFA)


i got a message that certificate key was installed to keystore,but still iam getting certificate error.
0
Comment
Question by:vikram kalyan
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
4 Comments
 
LVL 83

Expert Comment

by:David Johnson, CD, MVP
what is the error and if you view the certificate are the results as expected?
0
 

Author Comment

by:vikram kalyan
I am able to access the website without any CERTIFICATE issue by accessing below url

https://ABCEFGH.org:8443

We created a network DSN for URL redirection (ABCEFGH.org-->XYZ.org)

https://XYZ.org:8443 (Here i am getting the certificate error,do i need to create a certificate for redirected name XYZ.org)

Thanks for your response
0
 
LVL 83

Expert Comment

by:David Johnson, CD, MVP
https://XYZ.org:8443 (Here i am getting the certificate error,do i need to create a certificate for redirected name XYZ.org)
you need to add a subject alternative name that has the redirected name
0
 
LVL 15

Expert Comment

by:David Favor
Give your exact URL, so tools can be used to test your SSL config.

Trying to debug SSL problems... theoretically rarely works... Being able to probe your config, will likely provide the answer quickly.
0

Featured Post

Hire Technology Freelancers with Gigs

Work with freelancers specializing in everything from database administration to programming, who have proven themselves as experts in their field. Hire the best, collaborate easily, pay securely, and get projects done right.

Join & Write a Comment

We've all had that page pop up telling us there is a problem with the certificate and some of us continue on anyways and others run away to a safer competing site.  But what to do when you get the error - is it your problem or theirs?  What can you …
So you need a certificate so you can offer SSL encryption.  But which one should you get?  There are so many choices out there! Here is a generic overview of the main types of SSL certificates sold by the majority of commercial Certification Auth…
This is my first video review of Microsoft Bookings, I will be doing a part two with a bit more information, but wanted to get this out to you folks.
Have you created a query with information for a calendar? ... and then, abra-cadabra, the calendar is done?! I am going to show you how to make that happen. Visualize your data!  ... really see it To use the code to create a calendar from a q…

649 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question