O cemu se radi?! Sta sam slucajno provalio... Mozda neko zna pa da i ne cita dalje...
Tomcat uopste ne slusa 8443. A slusa 8080 i 8005. A zasto nije mi jasno?!
-netstat:
Code:
Proto Local Address Foreign Address State
TCP notebook:epmap notebook:0 LISTENING
TCP notebook:microsoft-ds notebook:0 LISTENING
TCP notebook:3306 notebook:0 LISTENING
TCP notebook:5800 notebook:0 LISTENING
TCP notebook:5900 notebook:0 LISTENING
TCP notebook:8080 notebook:0 LISTENING
TCP notebook:1029 notebook:0 LISTENING
TCP notebook:5152 notebook:0 LISTENING
TCP notebook:8005 notebook:0 LISTENING
TCP notebook:30606 notebook:0 LISTENING
TCP notebook:netbios-ssn notebook:0 LISTENING
Proto Local Address Foreign Address State
TCP notebook:epmap notebook:0 LISTENING
TCP notebook:microsoft-ds notebook:0 LISTENING
TCP notebook:3306 notebook:0 LISTENING
TCP notebook:5800 notebook:0 LISTENING
TCP notebook:5900 notebook:0 LISTENING
TCP notebook:8080 notebook:0 LISTENING
TCP notebook:1029 notebook:0 LISTENING
TCP notebook:5152 notebook:0 LISTENING
TCP notebook:8005 notebook:0 LISTENING
TCP notebook:30606 notebook:0 LISTENING
TCP notebook:netbios-ssn notebook:0 LISTENING
Sta sam ja uradio? (kopirani tekst iz konzole)
- podesio kljuc odnosno keystore (nisam koristio default keystore nego svoj):
C:\Program Files\Java\jdk1.6.0_10\bin>keytool -genkey -alias tomcat -keypass adminadmin -keyalg RSA -keystore tomcat.jks -storepass adminadmin
- eksportovao sertifikat u tomcat.crt:
C:\Program Files\Java\jdk1.6.0_10\bin>keytool -export -alias tomcat -file tomcat.crt -keystore tomcat.jks
Certificate stored in file <tomcat.crt>
- importovao sertifikat u jvm:
-probao:
C:\Program Files\Java\jdk1.6.0_10\bin>keytool -import -file server.crt -keystore %java_home%/jre/lib/security/cacerts -storepass changeit
- izbacivalo gresku: keytool error: java.lang.RuntimeException: Usage error, Files\Java\jdk1.6.0_10/jre/lib/security/cacerts is not a legal command
- hajde rekoh, mozda ima neki trip sa crtama (nema logike ali hajde) pa probao:
C:\Program Files\Java\jdk1.6.0_10\bin>keytool -import -file server.crt -keystore %java_home%\jre\lib\security\cacerts -storepass changeit
- izbacivalo istu gresku
- hmmm... brute force! :)
- prebacio jvm truststore (cacerts) u isti direktorijum sa crt i sa kytool (C:\Program Files\Java\jdk1.6.0_10\bin)
- uradio:
C:\Program Files\Java\jdk1.6.0_10\bin>keytool -import -alias tomcat -file tomcat.crt -keystore cacerts -storepass changeit
Trust this certificate? [no]: y
Certificate was added to keystore
- vratio u direktorijum C:\Program Files\Java\jdk1.6.0_10\jre\lib\security fajl cacerts.
- ODkomentarisao podesavanja server.xml Tomcata u direktorijumu C:\apache-tomcat-6.0.18\conf:
Code:
<Connector port="8443" protocol="HTTP/1.1" SSLEnabled="true"
maxThreads="150" scheme="https" secure="true"
clientAuth="false" sslProtocol="TLS" />
<Connector port="8443" protocol="HTTP/1.1" SSLEnabled="true"
maxThreads="150" scheme="https" secure="true"
clientAuth="false" sslProtocol="TLS" />
- uradio: https://localhost:8443/
- dobio: Page Load Error (logicno) x(
- pobudalio
- probao zaobilaznu varijantu:
C:\Program Files\Java\jdk1.6.0_10\bin>keytool -genkey -alias tomcat -keypass adminadmin -keyalg RSA -keystore tomcat.jks -storepass adminadmin
- ubacio taj fajl (tomcat.jks) u direktorijum conf Tomcata (C:\apache-tomcat-6.0.18\conf)
- dodao podesavanja u server.xml:
Code:
<Connector port="8443" protocol="HTTP/1.1" SSLEnabled="true"
maxThreads="150" scheme="https" secure="true"
clientAuth="false" sslProtocol="TLS"
keystoreFile="../conf/tomcat.jks"
keystorePass="adminadmin" />
<Connector port="8443" protocol="HTTP/1.1" SSLEnabled="true"
maxThreads="150" scheme="https" secure="true"
clientAuth="false" sslProtocol="TLS"
keystoreFile="../conf/tomcat.jks"
keystorePass="adminadmin" />
- uradio https://localhost:8443/
- dobio: Page Load Error (logicno) x(
- ponovo pobudalio
Znaci ili sam konj glupi i nesto sam zeznuo ili ovo nemere bez kabla?! :)