Hi 伟 丁,
have you add in the Webseal SSL Certificate Keystore (Signer Certificate Tab) the SSL Tomcat certificate? You have to try the Manage-> import too.
You must also check that the SSL and TLS you use on tomcat is enabled in the webseal configuration file.
You can do it in the SENDING DOMAIN COOKIES stanza, something like that:
# Selectively disable SSL version support for junction connections
disable-ssl-v2 = no
disable-ssl-v3 = no
disable-tls-v1 = no
disable-tls-v11 = no
disable-tls-v12 = no
disable-tls-v13 = yes
Regards.
Fabio Morziello
------------------------------
Fabio Morziello
------------------------------
Original Message:
Sent: Sun September 29, 2024 08:54 PM
From: 伟 丁
Subject: How to configure Virtual Junction to connect to Tomcat server via SSL
The Tomcat configuration under Windows has been successful. Now the Apache configuration under Ubuntu has failed, and it prompts that SSL is incorrect, but direct access is normal.
------------------------------
伟 丁
Original Message:
Sent: Sat September 28, 2024 10:00 AM
From: 伟 丁
Subject: How to configure Virtual Junction to connect to Tomcat server via SSL
I have added Tomcat's SSL certificate to the SSL certificate library. There is no problem configuring Virtual Junction to connect to IBM WAS and IBM HTTP, but it fails when connecting to the Tomcat server. They all use the same wildcard SSL certificate.
The error message is as follows:
系统警告
DPWWA1222E A third-party server is not responding. Possible causes: the server is down, there is a hung application on the server, or network problems. This is not a problem with the WebSEAL server.
DPWIV1217W SSL connection error.
Created Virtual Host Junction at owncloud
All attempts to connect to Nginx and Apache2 servers failed, including SSL.
It seems that further configuration is needed on Tomcat, Nginx, and Apache2, but I don't know how to solve it.
Please give me some advice!
------------------------------
伟 丁
------------------------------