Yes that works! Now I just have to study the JSSE documentation to better
understand the Java security model.
Thanks Dion
-- Pete --
---- Original Message -----
From: <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Monday, January 22, 2001 5:49 AM
Subject: Re: Stand Alone SSL Tomcat Example Wanted - Please!
>
>
> I ran into this same snag.
>
> The docs state that in the server.xml file where you activate SSL you
should put
> "ClientAuth=true". Make that "false".
>
> Basically what is happening is that the server is asking the browser to
identify
> itself with a certificate. Most people do not have a certificate for their
> browser, so the ClientAuth setting needs to be false.
>
> Dion Vansevenant
> Internetwork Administrator
> MRO.com
>
>
>
> |--------+----------------------->
> | | "Pete Ehli" |
> | | <peteehli@tel|
> | | eport.com> |
> | | |
> | | 2001/01/22 |
> | | 05:37 |
> | | Please |
> | | respond to |
> | | tomcat-user |
> | | |
> |--------+----------------------->
>
>---------------------------------------------------------------------------
-|
> |
|
> | To: [EMAIL PROTECTED]
|
> | cc: (bcc: Dion Vansevenant/PSDI)
|
> | Subject: Stand Alone SSL Tomcat Example Wanted - Please!
|
>
>---------------------------------------------------------------------------
-|
>
>
>
>
> Hello - I have followed the instructions in the docs - tomcat-ssl-howto
(SSL
> Direct) (Generate a SSL certificate (RSA) for tomcat) - From what I can
> understand from the docs I am configuring tomcat to use "secure socket
layering"
> (https) via tomcat as a standalone server (no web server involved) I have
done
> everything the docs say to do without a hitch. Also I tested JSSE to see
if it
> was setup correctly via a servlet with this code fragment
>
> SSLServerSocketFactory factory =
> (SSLServerSocketFactory) SSLServerSocketFactory.getDefault();
>
> SSLServerSocket sslSocket =
> (SSLServerSocket)factory.createServerSocket(5757);
>
> String [] cipherSuites = sslSocket.getEnabledCipherSuites();
>
> for (int i = 0; i < cipherSuites.length; i++) {
> System.out.println("Cipher Suite " + i + " = " + cipherSuites[i]);
> }
>
> Yes this test worked and setup is correct.
>
> Ok when I start tomcat I have a HttpConnectionHandler on 8443 (everything
is on
> my local machine) When I try to access https://localhost:8443 via internet
> explorer I get a dialog box that says
> Client Athenthentication
> The web site you want to use requests Athenthentication
> Select the certificate to use when connecting
>
> I configured the certificate as described in the docs
>
> What I would like to know is if anyone has a sample program (servlet or
jsp) to
> connect to tomcat on a local machine using https. I downloaded the JSSE
samples,
> but they don't make much since (all are applications) a tutorial somewhere
that
> uses tomcat would be very helpful. The API for JSSE seems rather large and
I am
> confused as to where to start. Hey you've got to crawl before you can
walk. If
> anyone can help me out I would really appreciate it. You can email me
directly
> at [EMAIL PROTECTED] Thanks
> -- Pete --
>
>
>
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, email: [EMAIL PROTECTED]
>
>
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, email: [EMAIL PROTECTED]
