Ok guys. I found the problem.
To use ZOHO integration you have to configure your server to deliver the whole certificate chain by itself, because the ZOHO client does not look for the chain. In my case I reconfigured APR in tomcat to deliver the ca chain separatly to the server certificate.
It looks like this:
To use ZOHO integration you have to configure your server to deliver the whole certificate chain by itself, because the ZOHO client does not look for the chain. In my case I reconfigured APR in tomcat to deliver the ca chain separatly to the server certificate.
It looks like this:
Code: Select all
Now ZOHO integration is working! <!-- Define a SSL HTTP/1.1 Connector on port 8443
This connector uses the JSSE configuration, when using APR, the
connector should be using the OpenSSL style configuration
described in the APR documentation -->
<Connector port="8443" address="0.0.0.0" protocol="HTTP/1.1" SSLEnabled="true"
maxThreads="150" scheme="https" secure="true" acceptCount="100"
enableLookups="false" clientAuth="true" sslProtocol="SSLv3"
SSLCipherSuite="ALL:!ADH:RC4+RSA:+HIGH:+MEDIUM:!LOW:!SSLv2:!EXPORT"
SSLCertificateFile="/home/openkm/tomcat-7.0.27/cert/serverpublic.pem"
SSLCertificateKeyFile="/home/openkm/tomcat-7.0.27/cert/serverprivate.pem"
SSLCertificateChainFile="/home/openkm/tomcat-7.0.27/cert/serverpublicchain.pem"
allowUnsafeLegacyRenegotiation="false"
/>
Last edited by Catscratch on Mon Jun 02, 2014 7:15 am, edited 1 time in total.