LetsEncrypt SSL Issue with Tomcat 9.0.4

Hi,

Im not able to start my tomcat server port 9443 for ssl after using LetsEncrypt SSL. Please assist.

error output below:

03-Mar-2022 12:47:14.498 INFO [main] org.apache.coyote.AbstractProtocol.pause Pausing ProtocolHandler ["https-jsse-nio-9443"]
03-Mar-2022 12:47:15.407 FINE [main] org.apache.catalina.util.LifecycleBase.setStateInternal Setting state for [Connector[HTTP/1.1-9443]] to [STOPPING]
03-Mar-2022 12:47:15.407 INFO [main] org.apache.coyote.AbstractProtocol.stop Stopping ProtocolHandler ["https-jsse-nio-9443"]
03-Mar-2022 12:47:15.407 FINE [main] org.apache.catalina.util.LifecycleBase.setStateInternal Setting state for [Connector[HTTP/1.1-9443]] to [STOPPED]
03-Mar-2022 12:47:15.408 FINE [main] org.apache.catalina.util.LifecycleBase.setStateInternal Setting state for [Connector[HTTP/1.1-9443]] to [DESTROYING]
03-Mar-2022 12:47:15.408 INFO [main] org.apache.coyote.AbstractProtocol.destroy Destroying ProtocolHandler ["https-jsse-nio-9443"]
03-Mar-2022 12:47:15.408 FINE [main] org.apache.catalina.util.LifecycleBase.setStateInternal Setting state for [Connector[HTTP/1.1-9443]] to [DESTROYED]
03-Mar-2022 12:47:30.848 FINE [main] org.apache.catalina.util.LifecycleBase.setStateInternal Setting state for [Connector[HTTP/1.1-9443]] to [INITIALIZING]
03-Mar-2022 12:47:30.849 INFO [main] org.apache.coyote.AbstractProtocol.init Initializing ProtocolHandler ["https-jsse-nio-9443"]
03-Mar-2022 12:47:30.995 FINE [main] org.apache.catalina.util.LifecycleBase.setStateInternal Setting state for [Connector[HTTP/1.1-9443]] to [FAILED]
03-Mar-2022 12:47:30.996 SEVERE [main] org.apache.catalina.util.LifecycleBase.handleSubClassException Failed to initialize component [Connector[HTTP/1.1-9443]]
03-Mar-2022 12:55:44.067 INFO [main] org.apache.coyote.AbstractProtocol.pause Pausing ProtocolHandler ["https-jsse-nio-9443"]
03-Mar-2022 12:55:44.982 FINE [main] org.apache.catalina.util.LifecycleBase.setStateInternal Setting state for [Connector[HTTP/1.1-9443]] to [STOPPING]
03-Mar-2022 12:55:44.982 INFO [main] org.apache.coyote.AbstractProtocol.stop Stopping ProtocolHandler ["https-jsse-nio-9443"]
03-Mar-2022 12:55:44.982 FINE [main] org.apache.catalina.util.LifecycleBase.setStateInternal Setting state for [Connector[HTTP/1.1-9443]] to [STOPPED]
03-Mar-2022 12:55:44.982 FINE [main] org.apache.catalina.util.LifecycleBase.setStateInternal Setting state for [Connector[HTTP/1.1-9443]] to [DESTROYING]
03-Mar-2022 12:55:44.983 INFO [main] org.apache.coyote.AbstractProtocol.destroy Destroying ProtocolHandler ["https-jsse-nio-9443"]
03-Mar-2022 12:55:44.983 FINE [main] org.apache.catalina.util.LifecycleBase.setStateInternal Setting state for [Connector[HTTP/1.1-9443]] to [DESTROYED]
03-Mar-2022 12:56:05.626 FINE [main] org.apache.catalina.util.LifecycleBase.setStateInternal Setting state for [Connector[org.apache.coyote.http11.Http11AprProtocol-9443]] to [INITIALIZING]
03-Mar-2022 12:56:05.627 FINE [main] org.apache.catalina.util.LifecycleBase.setStateInternal Setting state for [Connector[org.apache.coyote.http11.Http11AprProtocol-9443]] to [FAILED]
03-Mar-2022 12:56:05.628 SEVERE [main] org.apache.catalina.util.LifecycleBase.handleSubClassException Failed to initialize component [Connector[org.apache.coyote.http11.Http11AprProtocol-9443]]

I do not understand how this is related to Let's Encrypt certs. It seems more like a problem configuring Tomcat (which can be challenging).

Have you tried using the Tomcat help resources?
https://tomcat.apache.org/findhelp.html

Perhaps another volunteer here will be willing to help but please provide answers to the questions on the form you were shown when submitting this request (below):

===

Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. https://crt.sh/?q=example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.

My domain is:

I ran this command:

It produced this output:

My web server is (include version):

The operating system my web server runs on is (include version):

My hosting provider, if applicable, is:

I can login to a root shell on my machine (yes or no, or I don't know):

I'm using a control panel to manage my site (no, or provide the name and version of the control panel):

The version of my client is (e.g. output of certbot --version or certbot-auto --version if you're using Certbot):

3 Likes

My domain is: htttps://repository.kec.ac.ke:9443/xmlui

I ran this command: certbot certonly --standalone -d repository.kec.ac.ke

It produced this output: it renewed my certificate but I cannot use it with tomcat when I create a jks with the ssl cert

My web server is (include version): tomcat 9.0.4

The operating system my web server runs on is (include version): centos7

My hosting provider, if applicable, is: n/a

I can login to a root shell on my machine (yes or no, or I don't know): yes

I'm using a control panel to manage my site (no, or provide the name and version of the control panel): n/a

The version of my client is (e.g. output of certbot --version or certbot-auto --version if you're using Certbot): certbot 1.11.0

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.