on a rhel 6.2 install with openjdk and the official linux jss installed (not via source), i'm trying to import ssl certs to the tomcat keystore.
importing the root CA and the cert for the host looks like it works fine. both show up in the keystore.
upon restarting tomcat, i get the following:
SEVERE: Failed to initialize end point associated with ProtocolHandler ["http-bio-8443"] java.io.IOException: SSL configuration is invalid due to No available certificate or key corresponds to the SSL cipher suites which are enabled.
what am i missing here, if anything?
You importing the Root CA to the same keystore or the cacerts keystore? I believe at some point Tomcat (late 6/early 7?) moved where it would look for Root CA to only the cacerts keystore ($JAVA_HOME/jre/lib/security/cacerts)
I also assume you've got the private key too, though that seems a bit too level 1 for you ;)