Cosmo SSL
The server bundle does not accept SSL connections out of the box. To enable SSL, perform the following tasks.
Create a Certificate Keystore
Execute the following command as the user which will run Tomcat, specifying a password value of
osafcosmo
for both the keystore password and the key (certificate) password:
- Unix
-
$
JAVA_HOME
/bin/keytool -genkey -alias osafcosmo -keyalg RSA
- Windows
- -- not yet supported -- as of 2008-08-22 this appears to work with Windows XP SP3 (use %
JAVA_HOME
% instead of $
JAVA_HOME)
Enable SSL Connector
Uncomment the SSL Connector entry in
$OSAFSRV_HOME/tomcat/conf/server.xml
:
<Connector port="8443" enableLookups="false" secure="true"
scheme="https" clientAuth="want"
keystorePass="osafcosmo" sslProtocol="TLS"/>
Connect to your SSL enabled Chandler server
Simply point your browser at https://localhost:8443
Reference
For more information on creating a keystore, importing an existing certificate into a keystore, and configuring the SSL connector in Tomcat, see http://jakarta.apache.org/tomcat/tomcat-5.5-doc/ssl-howto.html.