************************
Keytool is a bit tricky.
If you do not write as parameter "-keystore xxxx" then all operations are performed on
a "hidden" keystore file that, at least for windows NT, is located in
WINNT/profiles/loginusername/.keystore or something like that.
These file is called ".keystore" ( including the dot as the first name, which is
illegal normally under windows/DOS).
In other words, Keytool has a default which might drive you mad if you forget to use
all the time the -keystore switch.
***************************
Sun's ssl implementation has also another "default". There is one or two files called
cacerts (somewhere in your hardisk, hanging from JRE's root directory and/or JDK's
root directory.
With Orion, I have noticed that unless you delete those cacerts files, the cacerts
file you specify in the XML file for configuring orions ssl, will not be taken into
account. As if Sun's SSL defaults to the other files.
So I delete those cacerts to force Sun's SSL to use the cacerts file specified in
Orion's SSL configuration file and then it works perfectly.
*************
I hope this will help anyone.
Ariel/
