Hello everyone,
We would like to setup a secured web service on Axis 1.4, Tomcat 6.0.24, JDK 1.6 and CentOS Linux, because our partner requires HTTPS access to our web service and accepts only publicly trusted certificates (not self-signed ones). So we are setting up SSL on Tomcat 6.0.24, applying the chapter "Installing a Certificate from a Certificate Authority" of ssl-howto. At last we can access to our Tomcat welcome page through HTTPS, but the certificate we acquired from GeoTrust Global CA does not appear in my web browser. For example if we display the welcome page in Internet Explorer 8, the address bar will turn red and a message "certificat error" will appear, showing a certificate delivered by ourselves. These are the steps we have taken: Create a new keystore containing a private key: keytool -genkey -alias tomcat -keyalg RSA -keysize 2048 -keystore $myKeyStoreFileName -dname $myDistinguishedName Create a CSR based on our keystore: keytool -certreq -keyalg RSA -alias tomcat -file $myCSRFileName -keystore $myKeyStoreFileName Once having received our certificates we imported the root certificate, the chain certificate and our server's certificate: keytool -import -trustcacerts -alias ROOT -file $myRootCert -keystore $myKeyStoreFileName keytool -import -trustcacerts -alias INTER -file $myIntermediateCert -keystore $myKeyStoreFileName keytool -import -trustcacerts -alias $myAlias -file $myServerCert -keystore $myKeyStoreFileName Could anyone tell me what I missed in my operations? I would also like to translate them into French in order to share it with other developers in my country. With my best wishes, Hélène Chèze
