Frédéric LE MAISTRE wrote:
are you sure of the syntax?
Because startup -Djavax.net.debug=all didn't do anything
try: -Djavax.net.debug=ssl (to see all sll related stuff)
or: -Djavax.net.debug=help (to see your options)
- Original Message -
From: "Wolfgang Stein" <[EMAIL PROTECTED]>
how do you know the client certificate is "well recognized"? This error
usually means that the client authentication is not working, you can
check this by setting ClientAuth="false" and retrying.
cheers,
memo
Frédéric LE MAISTRE wrote:
> I made an SSL connection between Tomcat server and IE
try adding the client certificate to the keystore named
%JAVA_HOME%/jre/lib/security/cacerts, as this is the truststore that
Tomcat uses by default.
Frédéric LE MAISTRE wrote:
> When I use Tomcat with SSL and "clientAuth = true", Tomcat made an exception
> with the following message : "handsha
hi panos,
Tomcat uses the standart java truststore to authenticate the client cert,
not it's keystore. See below for corrections:
- Original Message -
From: "Panos Skondras" <[EMAIL PROTECTED]>
To: "Tomcat Users" <[EMAIL PROTECTED]>
Sent: Thursday, October 03, 2002 12:06
Subject: Tomcat
The server certificate must be where you set it up in your server.xml (for
details, see the tomcat-ssl-howto). This will enable Tomcat to identify
itself to the client.
The client certificate's CA's public key (or just the whole certificate)
must be imported into %JAVA_HOME%/jre/lib/security/cace
- Original Message -
From: "neal" <[EMAIL PROTECTED]>
To: "Tomcat Users List" <[EMAIL PROTECTED]>
Sent: Friday, September 20, 2002 11:31 PM
Subject: SSL: keystore.name
> The file generated from keytool was keystore.name ... not *.keystore.
Could
> this be the reason we are getting the f
If the password is not "changeit", you have to define it explicitly in the
server.xml file. Also, the keystore password *must* be the same as the
password for the certificate in the keystore.
- Original Message -
From: "neal" <[EMAIL PROTECTED]>
To: "Tomcat Users List" <[EMAIL PROTECTED]
Hi all,
I also got Tomcat working with client auth. last week. What I believe is
not documented in the docs is how Tomcat authenticates the client
certificates, i.e. the truststore used by Tomcat. AFAIK, the truststore
cannot be specified in the server.xml, and Tomcat just uses the
trusstore
Great, I've been looking for a way to do this for some time now. I tried
out your snippets, but when I start tomcat from an ant script, the rest
of the script doesn't get executed (the only thing I've changed: I've
commented out the catalina_base line, as I don't need multiple instances).
Can
Hi,
I know that this is a hot topic, and I searched all archives I could, but
still could not find out why this is not working. I am trying to set up
Tomcat to use server *and* client side certificates. I am following the
SSL-Howto. When I setup only the server certificate, everything is OK, but
10 matches
Mail list logo
