/cacert.pem -keystore $JAVA_HOME/jre/lib/security/cacerts
+++
To get Tomcat accepting client certificates from this CA I had to
restart it... Bad.
--
Chad La Joie 315Q St. Mary's Hall
Project Sentinel 202.687.0124
level system.
jean-frederic clere wrote:
Chad La Joie wrote:
Hey guys,
I was wondering if there were any thoughts on this particular
suggestion. I hadn't seen anything on the list.
BTW: mod-ssl says:
+++
In practice only levels none and require are really interesting, because
level
jean-frederic clere wrote:
Chad La Joie wrote:
Yeah, I know what mod-ssl says, and for most cases it's probably right,
however the optional_no_ca option is interesting to us because it
provides exactly the functionality that we need; accepting the client
cert, putting it in a standard
Hey guys,
I was wondering if there were any thoughts on this particular
suggestion. I hadn't seen anything on the list.
Chad La Joie wrote:
Good Morning,
I work on the Internet2 Shibboleth project and we've run in to an
issue with client cert authentication in a stand alone Tomcat
support boon for us). What we'd like to request is a similar
option for the SSL connector when client cert auth is used so that we
can support a stand alone Tomcat set up too.
Would this be possible?
--
Chad La Joie 315Q St. Mary's Hall
Project Sentinel 202.687.0124