Yep, this is a problem. And, as I said, we don't have keystores, so
even if it did pick up the new cert it still wouldn't work for us.
jean-frederic clere wrote:
OK I have added a new CA using:
+++
[EMAIL PROTECTED]:~ $JAVA_HOME/bin/keytool -import -trustcacerts -file
Chad La Joie wrote:
jean-frederic clere wrote:
Chad La Joie wrote:
Yeah, I know what mod-ssl says, and for most cases it's probably right,
however the optional_no_ca option is interesting to us because it
provides exactly the functionality that we need; accepting the client
cert, putting
Chad La Joie wrote:
Hey guys,
I was wondering if there were any thoughts on this particular
suggestion. I hadn't seen anything on the list.
Have you tried to use keystoreType=PKCS12 in the connector?
Chad La Joie wrote:
Good Morning,
I work on the Internet2 Shibboleth project and
Chad La Joie wrote:
Hey guys,
I was wondering if there were any thoughts on this particular
suggestion. I hadn't seen anything on the list.
BTW: mod-ssl says:
+++
In practice only levels none and require are really interesting, because level
optional doesn't work with all browsers and
Yeah, I know what mod-ssl says, and for most cases it's probably right,
however the optional_no_ca option is interesting to us because it
provides exactly the functionality that we need; accepting the client
cert, putting it in a standard place, and allowing our application to do
the verification
Chad La Joie wrote:
Yeah, I know what mod-ssl says, and for most cases it's probably right,
however the optional_no_ca option is interesting to us because it
provides exactly the functionality that we need; accepting the client
cert, putting it in a standard place, and allowing our application
jean-frederic clere wrote:
Chad La Joie wrote:
Yeah, I know what mod-ssl says, and for most cases it's probably right,
however the optional_no_ca option is interesting to us because it
provides exactly the functionality that we need; accepting the client
cert, putting it in a standard
Hey guys,
I was wondering if there were any thoughts on this particular
suggestion. I hadn't seen anything on the list.
Chad La Joie wrote:
Good Morning,
I work on the Internet2 Shibboleth project and we've run in to an
issue with client cert authentication in a stand alone Tomcat
su correo ha sido recepcionado. gracias
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
su correo ha sido recepcionado. gracias
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
su correo ha sido recepcionado. gracias
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
su correo ha sido recepcionado. gracias
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
su correo ha sido recepcionado. gracias
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
su correo ha sido recepcionado. gracias
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
su correo ha sido recepcionado. gracias
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
su correo ha sido recepcionado. gracias
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
su correo ha sido recepcionado. gracias
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
17 matches
Mail list logo
