with SSL the browser and tomcat will handle the certs for you without having to parse them. You just have to make a cert for your tomcat and tell tomcat where it is, in the config for the connector. It's all well documented on the tomcat site. Otherwise the only thing you need to do is set up security-constraints in your web.xml for the appropriate pages. That is documented well in the servlet spec.
Adam
On 01/28/2004 11:24 PM Milazzo, Michael A HQISEC wrote:
Hi,
I am trying to configure Tomcat to protect my pages using SSL client
authentication. I changed the clientAuth option within the HTTPS connector,
but I'm not sure what to do next. My code already tries to look for the
certs and parse them, but I am not sure what else I need to configure.
Thanks,
Michael A. Milazzo USAISEC-Technology Integration Center Communications Systems Evaluation Team Comm: (520) 533-3765 DSN: 821-3765 Email: [EMAIL PROTECTED]
-- struts 1.1 + tomcat 5.0.16 + java 1.4.2 Linux 2.4.20 Debian
--------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
