![]() $ pki -d ~/.dogtag/pki-tomcat/ca/alias/ -c Secret.123 -n caadmin ca-user-find The server generates an internal server error during the authentication process over SSL and there is no error in the log file: Runtime Issues Internal Server Error during authentication With the above workaround the problem no longer exists. : no such provider: Mozilla-JSSĪt .getService(GetInstance.java:83) The workaround is to configure the secure connector in server.xml to use the blocking Java connector.ĭue to the Tomcat JSS issue above, the JSS security provider is not loaded:Ģ 20:29:29.849 SEVERE .SessionIdGeneratorBase.createSecureRandom Exception initializing random number generator using provider The current Tomcat JSS and JSS does not support the non-blocking Java NIO connector which is used by default in Tomcat 8.Ģ 20:27:38.190 SEVERE .init Failed to initialize end point associated with ProtocolHandler Īt .(NioEndpoint.java:362) NullPointerException during SSL initialization move allowLinking attribute from Context to Resources. ![]() base//shared/conf/Catalina/localhost/.xml.base/server/share/conf/Catalina/localhost/pki.xml.base/server/share/conf/Catalina/localhost/ROOT.xml.The following deployment descriptors need to be updated: The base/server/share/conf/server.xml needs to be modified: Installation Issues Incompatible Tomcat configuration Same thing with Tomcat JSS, since the same Tomcat JSS versions may run on multiple platforms with different Tomcat versions, it needs to maintain separate set of files for each Tomcat version. If a platforms supports both Tomcat versions, Dogtag needs to provide a mechanism to select which Tomcat version to use on new and existing instances. That means Dogtag must maintain separate set of files for each Tomcat versions, and build the ones available on the target platform. Since the same Dogtag versions may run on multiple platforms, and each platform supports the different Tomcat versions, Dogtag needs to support multiple Tomcat versions simultaneously. The Tomcat JSS needs to be updated due to changes in Tomcat API. base/server/tomcat/src/com/netscape/cms/tomcat/ProxyRealm.java.base/server/tomcat/src/com/netscape/cms/tomcat/SSLAuthenticatorWithFallback.java.The following classes need to be updated due to changes in Tomcat API and Servlet API: This page contains the efforts required to support Tomcat 8 in Fedora 23. In Fedora 23 the Tomcat is changed to version 8, which is incompatible with the current Dogtag. The current Dogtag only supports Tomcat 7. 4.1 Internal Server Error during authentication.3.3 NullPointerException during SSL initialization.3.2 Incompatible deployment descriptors.2.3 Support for multiple Tomcat versions.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |