Reputation: 798
Serve different certs for same Tomcat application via connectors?
For a limited time, we have to serve the same Tomcat 6 web application from two different domain names. Both domains need to be served HTTPS - is it technically possible to handle serving different certs for the same app using connectors (or other method)?
The other option (which we are trying to avoid) is to handle the cert delivery upstream of the application.
TIA,
Geoff
Upvotes: 1
Views: 616
Answers (1)
Reputation: 75496
There are 3 ways to do this,
Get 2 IPs for the same host and set up 2 connectors bound to each IP. This is cleanest solution.
Get a cert with SAN (Subject Alternative Name). This is basically a cert with 2 hostnames. Some real old browser and Java 1.5 earlier doesn't support SAN.
Another way to use 2 certs on the same IP is to use SNI (Server Name Indication) extension of TLS. Unfortunately, this is not supported by JSSE. If you can run an Apache httpd in front of the Tomcat, you can use this feature.
Upvotes: 1
Related Questions
- Using multiple SSL certificates in Tomcat 7
- Creation of a Tomcat Connector Creates Two Instances of the Same Spring Boot App - How to access HTTP endpoint While Starting App from HTTPS
- Tomcat 8 configure multiple SSL connectors
- Multiple HTTPS Connectors in Tomcat using different certificates
- How can I use SSL through Apache with multiple Tomcat Webapp instances?
- Multiple SSL config on Tomcat 8.5
- Configure tomcat SSL with single certificate that has multiple aliases
- Tomcat connector element combinations for SSL related properties
- Using multiple SSL certificates in single tomcat instance
- Programmatically control what SSL cert Tomcat presents