You should only export your certificate and give it to the clients. You
should not give out your keystores.
keytool -keystore .keystore -export -alias yourname -file yourname.cer
Then the client can import this certificate to their keystore and use it.
keytool -keystore .trustStore -import -file yourname.cer
Upul
On Mon, May 12, 2008 at 6:13 PM, Asensio, Rodrigo <
[EMAIL PROTECTED]> wrote:
> hello, I'm developing a web service who runs over https, I have made it
> run successfully (1 way SSL) but I have a couple of questions about best
> practices.
>
> My Company has a .keystore file in the tomcat server with a password
> "somepass".
>
> I published the webservice and tried using this code in the beginning of
> my snippet:
>
> System.setProperty("javax.net.ssl.trustStore",
> "C:/software/tomcat6/bin/.keystore");
>
> System.setProperty("javax.net.ssl.trustStorePassword","somepass");
>
> Since my customer have to do this, I have to give him the password to do
> the authentication, I think he is doing the client in .NET .
> Should I give him the trustStore file and password ?
>
> thank you
>
> Rodrigo
> www.rodrigoasensio.com
>
>
>
> This message (including any attachments) contains confidential
> and/or proprietary information intended only for the addressee.
> Any unauthorized disclosure, copying, distribution or reliance on
> the contents of this information is strictly prohibited and may
> constitute a violation of law. If you are not the intended
> recipient, please notify the sender immediately by responding to
> this e-mail, and delete the message from your system. If you
> have any questions about this e-mail please notify the sender
> immediately.
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
>
>
