Good Afternoon , My name is Renato and I were adquired a SSL Verisign
Certificate and I see the documentation that you explained into direction
-->
http://wiki.glassfish.java.net/Wiki.jsp?page=How_to_ssl_versign , but I
dont understand very well the instructions about the* steps in using
verisign certificate with Glassfish appserver *:
*In glassfish server environment:*
1. Add the SSL to http-listener-2 with "test-server" (same as above) alias
using admin console . Stop the server.
2. Copy mykeystore.jks to keystore.jks (under domain1/config)
3. Import the CA certs in trust store (domain1/config/cacerts.jks):
keytool -import -alias verisigncert -keystore cacerts.jks -trustcacerts
-file verisign_test_ca.cer -v keytool -import -alias verisigninter -keystore
cacerts.jks -trustcacerts -file verisign_intermediate_ca.cer
4. Start the server
At this point you should able to access
https://localhost:8181/ with new
test-server certificate.
---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
Help me please , beacuse in the first step , I added the next line in the
file domain.xml in the glassfish: <ssl cert-nickname="test-server"
client-auth-enabled="false" ssl2-enabled="false" ssl3-enabled="false"
tls-enabled="false" tls-rollback-enabled="false"/>
this is the result:
<http-listener acceptor-threads="2" address="0.0.0.0"
blocking-enabled="false" default-virtual-server="server" enabled="true"
family="inet" id="http-listener-2" port="8181" security-enabled="true"
server-name="" xpowered-by="true">
<ssl cert-nickname="test-server" client-auth-enabled="false"
ssl2-enabled="false" ssl3-enabled="false" tls-enabled="false"
tls-rollback-enabled="false"/>
<ssl cert-nickname="s1as" client-auth-enabled="false"
ssl2-enabled="false" ssl3-enabled="true" tls-enabled="true" tls-rollback-
enabled="true"/>
</http-listener>
In the second step , I copied the content of the file mykeystore.jks behind
the content of the file keystore.jks of the glassfish
In the third step and fourth step , I dont have problem whit this steps.
Then when I start the server , I start the server glassfish in the netbeans
and print this:
*Iniciando el dominio domain1, espere.
Registro redireccionado a C:\Archivos de
programa\glassfish-v2ur2\domains\domain1\logs\server.log.
Error refreshing ConfigContext:C:\Archivos de
programa\glassfish-v2ur2\domains\domain1\config\domain.xml
cause: No se pudo crear el documento XML-DOM. Compruebe XML para asegurarse
de que sea correcto.
The content of element type "http-listener" must match "(ssl?,property*)".
Error refreshing ConfigContext:C:\Archivos de
programa\glassfish-v2ur2\domains\domain1\config\domain.xml
cause: No se pudo crear el documento XML-DOM. Compruebe XML para asegurarse
de que sea correcto.
The content of element type "http-listener" must match "(ssl?,property*)".*
when I put
<http-listener acceptor-threads="2" address="0.0.0.0"
blocking-enabled="false" default-virtual-server="server" enabled="true"
family="inet" id="http-listener-2" port="8181" security-enabled="true"
server-name="" xpowered-by="true">
<ssl cert-nickname="test-server" client-auth-enabled="false"
ssl2-enabled="false" ssl3-enabled="false" tls-enabled="false"
tls-rollback-enabled="false"/>
</http-listener>
the result is:
*Caused by: java.lang.IllegalStateException: Keystore was tampered with, or
password was incorrect*
Help me please and say me in detail the steps or my error. Thanks.
PD:VeriSign has no documentation for this, I sent a email and answer me that
they has no documentation for this