如何在glassfish 3.1.2.2上安装ssl
[英]how to install ssl on glassfish 3.1.2.2
问题描述
How to install ssl on glassfish 3.1.2.2 ? 
如何在glassfish 3.1.2.2上安装ssl?
I already have certificate for root and intermediate. 我已经拥有root和intermediate的证书。 So certificate is ready. 证书准备好了。
the problem is how to install it? 问题是如何安装? I already follow guide from http://javadude.wordpress.com/2010/04/06/getting-started-with-glassfish-v3-and-ssl/ and http://eugenedvorkin.com/installing-thawte-certificate-on-glassfish-3-11-server-for-https-traffic/ 我已经关注了http://javadude.wordpress.com/2010/04/06/getting-started-with-glassfish-v3-and-ssl/和http://eugenedvorkin.com/installing-thawte-certificate-的指南上与GlassFish 3-11服务器换HTTPS流量/
but still fail , this is what i have tried to do. 但仍然失败,这是我试图做的。
keytool -genkeypair -keyalg RSA -keystore keystore.jks -keypass changeit -storepass changeit -alias s1askeytool -certreq -alias s1as -file s1as.csr -keystore keystore.jks -storepass changeitkeytool -import -v -trustcacerts -alias s1as -file root.crt -keystore cacerts.jks -storepass changeitkeytool -import -v -trustcacerts -alias Intermediate -file intermediate.crt -keystore cacerts.jks -storepass changeit
after 4 this step, it will create keystore.jks and cacerts.jks . 在此步骤4之后,它将创建keystore.jks和cacerts.jks 。 After that i copy this 2 files to glassfish-3.1.2.2\\glassfish\\domains\\domain1\\config 之后,我将这2个文件复制到glassfish-3.1.2.2\\glassfish\\domains\\domain1\\config
open admin console and set to http listener 2, 打开管理控制台并设置为http侦听器2,
- Certificate NickName: keystore 证书NickName:密钥库
- Key Store: keystore.jks 密钥库:keystore.jks
- Trust Algorithm: sha1 信任算法:sha1
- Max Certificate Length: 5 最长证书长度:5
- Trust Store: cacerts.jks 信任商店:cacerts.jks
but when i access https:\\ localhost:8181 但是当我访问https:\\ localhost:8181时
>WARNING: GRIZZLY0007: SSL support could not be configured!
java.io.IOException: sha1 TrustManagerFactory not available
at com.sun.grizzly.util.net.jsse.JSSE14SocketFactory.init(JSSE14SocketFactory.java:188)
at com.sun.grizzly.config.SSLConfigHolder.initializeSSL(SSLConfigHolder.java:363)
at com.sun.grizzly.config.SSLConfigHolder.configureSSL(SSLConfigHolder.java:241)
at com.sun.grizzly.config.GrizzlyEmbeddedHttps$LazySSLInitializationFilter.execute(GrizzlyEmbeddedHttps.java:202)
at com.sun.grizzly.DefaultProtocolChain.executeProtocolFilter(DefaultProtocolChain.java:137)
at com.sun.grizzly.DefaultProtocolChain.execute(DefaultProtocolChain.java:104)
at com.sun.grizzly.DefaultProtocolChain.execute(DefaultProtocolChain.java:90)
at com.sun.grizzly.http.HttpProtocolChain.execute(HttpProtocolChain.java:79)
at com.sun.grizzly.ProtocolChainContextTask.doCall(ProtocolChainContextTask.java:54)
at com.sun.grizzly.SelectionKeyContextTask.call(SelectionKeyContextTask.java:59)
at com.sun.grizzly.ContextTask.run(ContextTask.java:71)
at com.sun.grizzly.util.AbstractThreadPool$Worker.doWork(AbstractThreadPool.java:532)
at com.sun.grizzly.util.AbstractThreadPool$Worker.run(AbstractThreadPool.java:513)
at java.lang.Thread.run(Thread.java:722)
>SEVERE: ProtocolChain exception
java.lang.NullPointerException
at com.sun.grizzly.filter.SSLReadFilter.newSSLEngine(SSLReadFilter.java:352)
at com.sun.grizzly.filter.SSLReadFilter.obtainSSLEngine(SSLReadFilter.java:399)
at com.sun.grizzly.filter.SSLReadFilter.execute(SSLReadFilter.java:159)
at com.sun.grizzly.DefaultProtocolChain.executeProtocolFilter(DefaultProtocolChain.java:137)
at com.sun.grizzly.DefaultProtocolChain.execute(DefaultProtocolChain.java:104)
at com.sun.grizzly.DefaultProtocolChain.execute(DefaultProtocolChain.java:90)
at com.sun.grizzly.http.HttpProtocolChain.execute(HttpProtocolChain.java:79)
at com.sun.grizzly.ProtocolChainContextTask.doCall(ProtocolChainContextTask.java:54)
at com.sun.grizzly.SelectionKeyContextTask.call(SelectionKeyContextTask.java:59)
at com.sun.grizzly.ContextTask.run(ContextTask.java:71)
at com.sun.grizzly.util.AbstractThreadPool$Worker.doWork(AbstractThreadPool.java:532)
at com.sun.grizzly.util.AbstractThreadPool$Worker.run(AbstractThreadPool.java:513)
at java.lang.Thread.run(Thread.java:722)
>SEVERE: ProtocolChain exception
java.lang.NullPointerException
at com.sun.grizzly.filter.SSLReadFilter.newSSLEngine(SSLReadFilter.java:352)
at com.sun.grizzly.filter.SSLReadFilter.obtainSSLEngine(SSLReadFilter.java:399)
at com.sun.grizzly.filter.SSLReadFilter.execute(SSLReadFilter.java:159)
at com.sun.grizzly.DefaultProtocolChain.executeProtocolFilter(DefaultProtocolChain.java:137)
at com.sun.grizzly.DefaultProtocolChain.execute(DefaultProtocolChain.java:104)
at com.sun.grizzly.DefaultProtocolChain.execute(DefaultProtocolChain.java:90)
at com.sun.grizzly.http.HttpProtocolChain.execute(HttpProtocolChain.java:79)
at com.sun.grizzly.ProtocolChainContextTask.doCall(ProtocolChainContextTask.java:54)
at com.sun.grizzly.SelectionKeyContextTask.call(SelectionKeyContextTask.java:59)
at com.sun.grizzly.ContextTask.run(ContextTask.java:71)
at com.sun.grizzly.util.AbstractThreadPool$Worker.doWork(AbstractThreadPool.java:532)
at com.sun.grizzly.util.AbstractThreadPool$Worker.run(AbstractThreadPool.java:513)
at java.lang.Thread.run(Thread.java:722)
Anyone help me fixing this problem? 有人帮我解决这个问题吗? Thx b4 Thx b4
1 个解决方案
解决方案1
0 2013-07-11 09:52:45
This configuration works for me: 这个配置对我有用:
(on the SSL tab of http-listener-2) (在http-listener-2的SSL选项卡上)
- SSL3 - [enabled] SSL3 - [启用]
- TLS - [enabled] TLS - [启用]
- Client Authentication - [enabled] 客户端验证 - [启用]
- Certificate NickName: s1as 证书NickName:s1as
- Key Store: [empty] 密钥库:[空]
- Trust Algorithm: [empty] 信任算法:[空]
- Max Certificate Length: 5 最长证书长度:5
Trust Store: [empty]
信任商店:[空] Cipher Suites: [all selected]
密码套房:[全选]
Hope it helps. 希望能帮助到你。
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.