-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Michael,
On 4/12/2010 4:55 PM, Michael Dockery wrote:
because tomcat has the root for the client cert loaded into its truststore,
and the matching client cert subject name (ie: user) loaded in its auth
realm
the client is therefore
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
/U,
On 4/10/2010 3:31 PM, /U wrote:
Connector port=443 protocol=HTTP/1.1 SSLEnabled=true
maxThreads=150 scheme=https secure=true
clientAuth=false sslProtocol=TLS
keystoreFile=/users/me/.keystore
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
/U,
On 4/10/2010 4:13 PM, /U wrote:
i am confused about one thing: whil keystore is explicitly specified
in connector config, what about the truststore?
It can also be configured in the Connector. Have you not read any of
the documentation?
i
@tomcat.apache.org
Sent: Mon, April 12, 2010 9:32:32 AM
Subject: Re: Installing certificate chain on Tomat
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
/U,
On 4/10/2010 3:31 PM, /U wrote:
Connector port=443 protocol=HTTP/1.1 SSLEnabled=true
maxThreads=150 scheme=https secure
Maybe you are getting the certificate myhost issued by CA X is not trusted,
because you a fucking virus
-Original Message-
From: /U [uma...@comcast.net]
Date: 04/10/2010 12:02 AM
To: users@tomcat.apache.org
Subject: Re: Installing certificate chain on Tomat
Note: Original message
@tomcat.apache.org
Subject: Re: Installing certificate chain on Tomat
Note: Original message sent as attachment
-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h
@tomcat.apache.org
Subject: Re: Installing certificate chain on Tomat
Note: Original message sent as attachment
-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h
AM
To: users@tomcat.apache.org
Subject: Re: Installing certificate chain on Tomat
Note: Original message sent as attachment
-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users
On 04/10/2010 12:01 AM, /U wrote:
i am installing certificate chain on tomcat 6.x (JRE 1.6). From my CA I have
private key (PEM),
identity cert (PEM) (CA X trusts myhost)
and a cert chain file (PEM file) (entrust trusts CA X)
The cert chain is: (entrust) === trusts == (CA X) ==
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
/U,
On 4/10/2010 12:01 AM, /U wrote:
i am installing certificate chain on tomcat 6.x (JRE 1.6). From my CA I have
private key (PEM),
identity cert (PEM) (CA X trusts myhost)
and a cert chain file (PEM file) (entrust trusts CA X)
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
/U,
On 4/10/2010 10:07 AM, /U wrote:
am i right in assuming that the identity certificate+private key is
installed
in keystoreFile of the SSL connector (C:\keystore below) and the CA
certificate chain is installed in jre/lib/security/cacerts?
Thank you Chris for your suggestion.
Here is my connector:
Connector port=443 protocol=HTTP/1.1 SSLEnabled=true
maxThreads=150 scheme=https secure=true
clientAuth=false sslProtocol=TLS
keystoreFile=/users/me/.keystore keystorePass=changeit
/
I tried this on different systems (*nix and XP) and hence the
differences in my excerpts. but in each case, the connector
config correct refers to keystore. i am sorry i quoted different
configs - will stick to *nix from now on.
i am confused about one thing: whil keystore is explicitly
13 matches
Mail list logo
