Skip to main content

I've configured FME Server for HTTPS/SSL following the documentation. I've successfully imported my certificates, configured the web.xml, server.xml and config.xml and there are no errors in the Tomcat log files after restarting.

 

 

Whenever I try to go to FME Server home page I get "Error SSL version or cipher mismatch"

 

The ciphers and protocols listed in server.xml do match what my browsers support (Chrome and IE) after testing on https://www.ssllabs.com/ssltest/viewMyClient.html

My first guess is that the certificate is not correctly installed.

Did you use the same keystore to generate the certificate signing request?

Did you use the domain name for the question: What is your first and last name?(You should)

Did you got this message "Certificate reply was installed in keystore" when you've imported the CA certificate?

Open in chrome and show developer tools under security you can show the installed certificate. Is everything correct?


A couple of troubleshooting steps:

 

- Are the ports open that you've configured for in the server.xml? 8443/443?

 

- Does the keystore and the tomcat config files have exactly the same password?

 

- Are you using a fully qualified domain name when requesting certificates?

 

- You can use https://www.ssllabs.com/ to see what protocols and ciphers your browser supports and compare against the server.xml configuration.

 

- Ensure the certificate(s) are installed correctly (and in the right order): Root, Issuing, Host/Full Name


Reply