http://jakarta.apache.org/tomcat/tomcat-5.0-doc/ssl-howto.html
"Set this value to true if you want Tomcat to require all SSL clients to present a client Certificate in order to use this socket."
-Tim
John Kammer wrote:
... In the server.xml file...> <login-config>
Having enabled SSL on port 8443 I have a question regarding the "clientAuth" attribute of the <Factory> tag. The value for the clientAuth attribute can be either 'true' or 'false'.
What specifically will the server be expecting from a connection when clientAuth is set to true? Having set up a client app that will talk to the servlet using https and with the certificates in place the communication will work with clientAuth=false, but when clientAuth=true I get bad-certificate errors. Nothing else has changed. The certificates haven't changed so I must assume that it is looking for something more, but I'm unclear as to what.
...in the servlet's web.xml file... <web-app> <servlet> <servlet-name>simpleServlet</servlet-name> <servlet-class>SimpleServlet</servlet-class> </servlet>
<security-constraint> <user-data-constraint> <transport-guarantee>CONFIDENTIAL</transport-guarantee> </user-data-constraint> </security-constraint>
<auth-method>CLIENT-CERT</auth-method> </login-config>
</web-app>
------------------------------------------------
Thanks in advance for pointing me in the right direction...
-- John Kammer
--------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
--------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
