Just wanted to close the loop on this and thank you guys for the help. I finally had a chance to loop back around and get this working today.
I had a primary and intermediate certificate and here's what worked for me -- do this for both the primary and intermediate certificates, and restart Tomcat. /path/to/java/bin/keytool -import -keystore /path/to/java/jre/lib/security/cacerts* -alias foo -storepass changeit -noprompt -trustcacerts -file /path/to/primary.crt /path/to/java/bin/keytool -import -keystore /path/to/java/jre/lib/security/cacerts* -alias bar -storepass changeit -noprompt -trustcacerts -file /path/to/intermediate.crt Couple of key points: * make sure the /path/to/java/jre ... stuff points to the location of the JDK Tomcat is using. * the "changeit" above is literally what you use there -- that's the default password for the keystore With that, everything seems to be working! Thanks again for the pointers. Matt -- Matthew Woodward [email protected] http://blog.mattwoodward.com identi.ca / Twitter: @mpwoodward Please do not send me proprietary file formats such as Word, PowerPoint, etc. as attachments. http://www.gnu.org/philosophy/no-word-attachments.html -- online documentation: http://openbd.org/manual/ http://groups.google.com/group/openbd?hl=en
