<div dir="ltr">I uninstalled Tomcat and then installed it with existing midpoint repository, once login to dashboard with administrator, it succeeded.<div>After that, when I added below line to java-opts,</div><div><font size="1"><br></font></div><div><font size="1">-<span style="color:rgb(0,0,0);font-family:Consolas,"Bitstream Vera Sans Mono","Courier New",Courier,monospace;white-space:nowrap">Djavax.net.ssl.trustStore=<midpoint-home>keystore.jceks -Djavax.net.ssl.trustStoreType=jceks</span></font><br><div class="gmail_extra"><br></div><div class="gmail_extra">administrator couldn't login to dashboard. When I removed that line from java-opts, it is still can not login to dashboard.</div><div class="gmail_extra"><br></div><div class="gmail_extra">Before these operations, I exctracted "jce_policy-8.zip" to lib/security.</div><div class="gmail_extra"><br></div><div class="gmail_extra">Also, I generated keystore with key size 256 like below line:</div><div class="gmail_extra"><font size="1"><br></font></div><div class="gmail_extra"><font size="1">keytool -genseckey -alias default -keystore keystore.jceks -storetype jceks -keyalg AES -keysize 256</font><br></div><div class="gmail_extra"><font size="1"><br></font></div><div class="gmail_extra"><font size="1"><br></font></div><div class="gmail_extra"><br><div class="gmail_quote">On Tue, Aug 22, 2017 at 12:46 PM, Dilek Gider <span dir="ltr"><<a href="mailto:dilek.gider@basistek.com" target="_blank">dilek.gider@basistek.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex"><div dir="ltr"><span style="font-size:12.8px">Hi, </span><div style="font-size:12.8px"><br></div><div style="font-size:12.8px">My test enviorement works fine with ssl connection to AD but it connects to AD test. Now i am configuring production enviorement, should connect to production AD. I wanted certificate file from customer, I dont know password and other details. But my question is, I removed all of keystores and midpoint gives error, i can't login with administrator. Why can't login , there is no exception nowhere, what can it be? </div><div class="gmail_extra"><br><div class="gmail_quote">On Tue, Aug 22, 2017 at 12:19 PM, Wojciech Staszewski <span dir="ltr"><<a href="mailto:wojciech.staszewski@diagnostyka.pl" target="_blank">wojciech.staszewski@<wbr>diagnostyka.pl</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex">What is the key length? If it is AES-256, then you have to download extra file "jce_policy-8.zip" and extract to $JAVA_HOME/jre/lib/security<br>
And what about keystore password and keypass? Was it changed?<br>
<br>
Regards,<br>
WS<br>
<br>
W dniu 22.08.2017 o 10:09, Dilek Gider pisze:<br>
> Hi All,<br>
><br>
> I tried to import AD keystore, but keystore files started to give an error "Invalid keystore format".<br>
> Then I uninstalled jdk and jre, and then installed the same version of jdk and jre, on the same file location.<br>
> After this operation, I can't login to midpoint as administrator. Error is:<br>
> Currently we are unable to process your request. Kindly try again later.<br>
><br>
> But there is no exception, I attached logs. I have resources in midpoint, how can I fix this problem? I made en effort long hours, at the end I will uninstall tomcat and then install it again. What can be the problem? Is there easy way to solve this?<br>
><br>
> Thank you.<br>
><br>
><br>
><br>
> ______________________________<wbr>_________________<br>
> midPoint mailing list<br>
> <a href="mailto:midPoint@lists.evolveum.com" target="_blank">midPoint@lists.evolveum.com</a><br>
> <a href="http://lists.evolveum.com/mailman/listinfo/midpoint" rel="noreferrer" target="_blank">http://lists.evolveum.com/mail<wbr>man/listinfo/midpoint</a><br>
><br>
<br>
--<br>
Wojciech Staszewski<br>
Administrator Systemów Sieciowych<br>
tel. kom: 663 680 236<br>
<a href="http://www.diagnostyka.pl" rel="noreferrer" target="_blank">www.diagnostyka.pl</a><br>
Diagnostyka Sp. z o. o.<br>
ul. Prof. M. Życzkowskiego 16, 31-864 Kraków<br>
Numer KRS: 0000381559 (Sąd Rejonowy dla Krakowa-Śródmieścia w Krakowie, XI Wydział Gospodarczy KRS)<br>
NIP: 675-12-65-009; REGON: 356366975<br>
Kapitał zakładowy: 33 756 500 zł.<br>
<br>
Pomyśl o środowisku zanim wydrukujesz ten e-mail.<br>
______________________________<wbr>_________________<br>
midPoint mailing list<br>
<a href="mailto:midPoint@lists.evolveum.com" target="_blank">midPoint@lists.evolveum.com</a><br>
<a href="http://lists.evolveum.com/mailman/listinfo/midpoint" rel="noreferrer" target="_blank">http://lists.evolveum.com/mail<wbr>man/listinfo/midpoint</a><br>
</blockquote></div><br></div></div>
</blockquote></div><br></div></div></div>