Ricardo wrote:
>
> This property is actually set to TRUE, but i can't get SSL properties.
Are you sure that the browser sends the CC?
Tomcat sends the list of acceptable CA's if the CC is not signed by one of the
CA (or chained) the browser won't send the CC.
Test with openssl:
openssl s_client -connect localhost:8443 -prexit
You should see something like:
+++
Acceptable client certificate CA names
/C=US/O=VeriSign, Inc./OU=Class 2 Public Primary Certification Authority
/C=US/O=VeriSign, Inc./OU=Class 3 Public Primary Certification Authority
/C=ZA/ST=Western Cape/L=Cape Town/O=Thawte Consulting cc/OU=Certification Servic
+++
>
> ============================
> Ricardo Borillo Domenech
> Programaci� - Servei d'Inform�tica
> Universitat Jaume I
> ----- Original Message -----
> From: "Craig R. McClanahan" <[EMAIL PROTECTED]>
> To: <[EMAIL PROTECTED]>
> Sent: Tuesday, September 25, 2001 10:13 PM
> Subject: Re: Tomcat 4.0 & Apache with Client Certs
>
> On Tue, 25 Sep 2001, Ricardo wrote:
>
> > Date: Tue, 25 Sep 2001 12:54:45 +0200
> > From: Ricardo <[EMAIL PROTECTED]>
> > Reply-To: [EMAIL PROTECTED]
> > To: [EMAIL PROTECTED]
> > Subject: Re: Tomcat 4.0 & Apache with Client Certs
> >
> > I'm using Tomcat 4.0 b5 standalone with client authentication.
> > In this situation Tomcat only exports information about the CIPHER_SUITE
> and
> > KEY_SIZE ... what about client certificate ?!?!?!
> >
>
> Tomcat 4 (stand alone) will only export client certificates if you tell
> the SSL connector that you require them. To do so, change the
> "clientAuth" property to "true".
>
> > Thanks,
> > ============================
> > Ricardo Borillo Domenech
> > Programaci� - Servei d'Inform�tica
> > Universitat Jaume I
>
> Craig McClanahan
