Michael Rooz wrote: > Hi Bill, > Well - first the reason we need to update the truststore often is because we > use self signed certificates and therefore each client certifcate needs to > be in there.
If your processes allow, you would be better off creating your own (self-signed) root CA, using that to sign client certs and then adding your CA to Tomcat's trust store. That way you can add new client certs without any changes to Tomcat. Mark --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
