[midPoint] SSL Questions

[Wojciech Staszewski]

Hi!

I've been told on the midPoint training, that the recommended way to run
midPoint over https is setting Apache as a reverse proxy.
Personally I use Tomcat with jsvc for midPoint and this setup allows me
to configure https on 443 port, also using plaintext certificate bundle.
I've not tried the standalone midPoint yet.

Regards!
 
W dniu 19.02.2018 o 16:15, Sean R Penndorf pisze:
> Hi Community,
>
> Is it possible to change the default keystore type from JCEKS to
> PKCS12 without breaking Midpoint?
>
> I have Midpoint 3.7 installed as Standalone (no Tomcat).  What port is
> used when connecting via SSL/TLS?  (e.g. Https://localhost:?????/midpoint)
>
> Using Firefox, I'm getting this error after adding my cert.
> "An error occurred during a connection to 10.168.62.13:8080. SSL
> received a record that exceeded the maximum permissible length. Error
> code: SSL_ERROR_RX_RECORD_TOO_LONG"
> Anyone encountered that and figured out a fix?
>
> Thanks!!!!
>
>
>
> ------------------
> *Sean Penndorf*
> SaaS Operational Services (SOS) - ID Management
> IBM Cloud
> srpenn at us.ibm.com
> Office: 248-552-4791   TL  623-9966
>
>
>
>
> _______________________________________________
> midPoint mailing list
> midPoint at lists.evolveum.com
> http://lists.evolveum.com/mailman/listinfo/midpoint

-- 
Wojciech Staszewski
Administrator Systemów Sieciowych
tel. kom: 663 680 236
www.diagnostyka.pl
Diagnostyka Sp. z o. o.
ul. Prof. M. Życzkowskiego 16, 31-864 Kraków
Numer KRS: 0000381559 (Sąd Rejonowy dla Krakowa-Śródmieścia w Krakowie, XI Wydział Gospodarczy KRS)
NIP: 675-12-65-009; REGON: 356366975
Kapitał zakładowy: 33 756 500 zł.

Pomyśl o środowisku zanim wydrukujesz ten e-mail.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.evolveum.com/pipermail/midpoint/attachments/20180219/31c08b06/attachment.htm>