Log signing by TSA in ejbca

Help
E-Sharifi
2013-01-20
2013-02-18
  • E-Sharifi
    E-Sharifi
    2013-01-20

    Hello Every Body
    first of all i want to thanks for your great application and forum.
    but i have problem that found nothing about that in this forum so i ask it here:

    i want to enable log signing by TSA for ejbca according to explained in ejbca wiki in following links:
    http://wiki.ejbca.org/logsigning#toc5
    http://wiki.ejbca.org/ejbca-install#toc4

    and my stuff versions are as follow:
    openjdk 1.6
    Jboss 5.1 GA
    ejbca 4.0.5 R13104

    my jboss-log4j.xml contain following configurations:

       <!- A time/date based rolling appender ->

       <appender name=\"FILE\" class=\"org.ejbca.appserver.jboss.SigningDailyRollingFileAppender\">
          <errorHandler class=\"org.jboss.logging.util.OnlyOnceErrorHandler\"/>
          <param name=\"File\" value=\"/opt/jboss/log/ejbcalog4jlog-4.log\"/>
          <param name=\"Append\" value=\"false\"/>
          <param name=\"SignMethod\" value=\"tsa\"/>
          <param name=\"TsaUrl\" value=\"[http://192.168.50.6:8080/signserver/tsa?signerId=1](http://192.168.50.6:8080/signserver/tsa?signerId=1%5C)"/>

          <!- Rollover at the top of each hour ->
          <param name=\"DatePattern\" value=\"\'.\'yyyy-MM-dd-HH\"/>

          <layout class=\"org.apache.log4j.PatternLayout\">
     
    <param name=\"ConversionPattern\" value=\"%d %-5p  %m%n\"/>

          </layout>

       </appender>

        <root>
          <!-
             Set the root logger priority via a system property. Note this is parsed by log4j,
             so the full JBoss system property format is not supported; e.g.
             setting a default via ${jboss.server.log.threshold:WARN} will not work.        
           ->
          <priority value=\"INFO\"/>
          <appender-ref ref=\"FILE\"/>
        </root>
       
    </log4j:configuration>
    </code>
    but when i start Jboss, it gives following error in jboss.log file:
    log4j:WARN No appenders could be found for logger (org.jboss.kernel.plugins.dependency.AbstractKernelController).
    log4j:WARN Please initialize the log4j system properly.

    i googled alot but found nothing.
    any help is appreciated in advance.

     
  • you should get logging by default in jboss 5. if you see ejbca lots in server.log you ont have to worry about spuripus messages from jboss. the wiki also contains recomendations for log configuration of jboss.

    cheers,
    Tomas

     
  • E-Sharifi
    E-Sharifi
    2013-01-22

    Thanks for your answer. yes i know that but i need automatic logging and SIGNING of files on Each Rotate!
    yes did as the recommendations, but get the above mentioned Error in jboss and it does not start properly.
    Any Other Idea?

     

  • Anonymous
    2013-01-22

    Hi
    I have the same problem. I compiled the "jbosslogsigning" and configured JBoss according to EJBCA wiki (http://wiki.ejbca.org/logsigning#toc5), but I got same error in log file and JBoss was stoped:

    log4j:WARN No appenders could be found for logger (org.jboss.kernel.plugins.dependency.AbstractKernelController).
    log4j:WARN Please initialize the log4j system properly.