Skip to main content

This content is closed to future replies and is no longer being maintained or updated.
Links may no longer function. If you have a similar request, please write a new post.

Question

 Munisekhar Katta (MunisekharK17224664)
First Citizens Bank

First Citizens Bank
US
MunisekharK17224664 Member since 2024 14 posts
First Citizens Bank
Posted: Mar 20, 2018
Last activity: Mar 21, 2018
Posted: 20 Mar 2018 2:28 EDT
Last activity: 21 Mar 2018 18:02 EDT
Closed
Solved

Implement HTTPS on Tomcat Server for Pega application
We have an Tomcat App server, we would like to implement HTTPS for our application. I have been provided with CA certificate to implement HTTPS.

To achieve this I have created a key store and I have imported the CA certificate into it and changed some configurations in server.xml file. I have also given Key store path and key store password. After restarting the server, I was able to browse the URL with HTTPS, but it is throwing an error saying "this certificate is invalid". As per my understanding, it is taking the key store private key certificate instead of CA certificate which is incorrect. Can some please advise me how to solve this issue?

Is there any other procedure we need to follow to implement this when we have Root certs and Env certificates.

added to Server.xml:

<Connector port="8180" protocol="HTTP/1.1"
connectionTimeout="20000"
redirectPort="8443"/>

<Connector SSLEnabled="true" acceptCount="100" clientAuth="false"

disableUploadTimeout="true" enableLookups="false" maxThreads="25"
keystoreFile="E:\XXXXXX\XXXXXX\XXX.jks" keystorePass="XXXXX"
port="8443" protocol="org.apache.coyote.http11.Http11NioProtocol" scheme="https"
secure="true" sslProtocol="TLS" />

To see attachments, please log in.
Security
System Administration

Posted: 6 years ago
Posted: 21 Mar 2018 3:28 EDT
Sudhakar Reddy Yaparla (YSudhakarReddy)
JPMorgan Chase & Company

JPMorgan Chase & Company
US

Hi,

The configuration is good as per the process, where you are getting this error, please share the screenshots and log files to troubleshoot the issue.

To see attachments, please log in.
Posted: 6 years ago
Posted: 21 Mar 2018 3:50 EDT
Habeeb Baig (BaigHabeeb)
Virtusa IT Consulting
Lead Decisioning Architect
Virtusa IT Consulting
AE

I believe you are able to access pega portal but getting an error as 'invalid certificate' with something as this https

If yes, then the certificate should be signed by CA not by the host for public IPs. In that case you may identify if you are working on private or public IP.

 

 

To see attachments, please log in.

We'd prefer it if you saw us at our best.

Pega Collaboration Center has detected you are using a browser which may prevent you from experiencing the site as intended. To improve your experience, please update your browser.

Close Deprecation Notice