Please see below…. Thank you.
Luigi
--------------------------------------------------------------------------------------------------------
Hi,
Yeah I figured it wasn't the right place, but I am new with this mailing list and I was told to just submit my problem. I can try the other one you had suggested....
Yes - we followed the steps over at codehaus/Jetty site.
Yes - we imported the cert into a keystore using keytool.
There is currently two entries in the keystore. We have tried to remove the one and when we do that we get an error when launching the service.... it's almost like it requires to have this one keystore entry. The entry shows owner is by the server (requestor) and the issuer is also the server. The entry we would like for it to take is issued by Go Daddy.
Yes - we referenced the keystore in the xml file. We also told it to use port 8443 (this is our secure port we would like to use and have opened on our firewall) However, I wonder if our reference isn't entered correctly? How can we confirm whether we entered our information correctly?
Thanks,
Luigi
-----Original Message-----
From: Sergiu Dumitriu [mailto:sergiu.dumitriu@xxxxxxxxx] On Behalf Of Sergiu Dumitriu
Sent: Monday, October 25, 2010 2:50 PM
To: XWiki Users
Cc: Luigi Occhino
Subject: Re: [xwiki-users] Help: How to import a signed ca into Jetty?
On 10/25/2010 06:40 PM, Luigi Occhino wrote:
> Hi there,
>
>
>
> The problem I'm having is importing a signed ca (from goDaddy). I
> believe I'm importing it correctly however after I've imported it
> along with adding the crt files to the keystore, what happens is when
> I go to connect to the webserver there's a certificate error
> indicating the certificate being used is self-signed when it should be
> signed by goDaddy???
>
>
>
> I've spent many hours researching this issue on the net and have not
> been successful. Someone suggested for me to try this mail list - it's
> my last resort.
Hi Luigi,
This is not the right list for help with Jetty, since this is about XWiki specific questions. The best resource for a specific project is that project's mailing list, in this case jetty-users@xxxxxxxxxxx, as listed on http://www.eclipse.org/jetty/mailinglists.php . I'll try to help you a bit, though. Did you follow the steps listed on http://docs.codehaus.org/display/JETTY/How+to+configure+SSL ? Did you import the certificate into a keystore using keytool? Are any other certificates stored in that keystore? Try "keytool -list -keystore <keystore location> -v". If there's more than one key in there, try to remove it. Did you properly reference the keystore in jetty.xml?
--
Sergiu Dumitriu
http://purl.org/net/sergiu/
--
This message has been verified by LastSpam (http://www.lastspam.com) eMail security service.
http://www.lastspam.com