Hi Mike,
Thanks for that - I am still having problems though....
Did your certificate from equifax contain a one from Thawte as your mail
seems to suggest. The file I have only has one from Equifax.....
I have imported the Equifax certificate with
keytool -import -alias equifax -file equifax.cert -trustcacerts
and this is then listed as a trusted certificate with keytool -list
I then attempt to add the server certificate with a similar command.
Am I doing something really stupid? Is there any way to check the 'chain' is
a> linking properly b> 'complete' - ie back to a self-signed certificate?
Many thanks
Hugh
-----Original Message-----
From: Mike Spreitzer <[EMAIL PROTECTED]>
To: [EMAIL PROTECTED] <[EMAIL PROTECTED]>
Date: 02 April 2001 16:09
Subject: Re: Tomcat SSL & Equifax
>It's working for me. I'm not sure from your note whether you did the same
>thing, but what I did is to load the "certificate" (really a chain of two
>certs) for equifax into cacerts and then load the certificate for my site
>into the keystore used by tomcat. This left the keystore holding a chain
>of 3 certificates (the three mentioned above) under the alias "tomcat".
>
>Hope this helps,
>Mike
