Markus wrote: > Ok, when I set clientAuth to "want" the "Exception getting SSL Cert" > goes away. (Wtf is this documented?). But I still get the 403 - Access > denied error. If you specify a user-data-constraint, you don't need to specify clientAuth in the connector.
> As username I used exactly the cert.getSubjectDN().getName() String > from the client certificate. > > Is this ok? Should be fine. This thread might help too: http://marc.theaimsgroup.com/?l=tomcat-user&m=107963922404774&w=2 Do you get prompted by your browser for a certificate? Mark --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]