:I think previously I misunderstood you - now just for my understanding -
:I should create a selfsigned CA just for signing the server certificate
:and then import in the keystore the client certificates which are signed
:with the org's standard CA cert. And then the client browsers should be
Hi all,
It is probably a stupid question, but
I have standalone tomcat installation with client authentication switched on
as described in the tomcat documentation. The problem is that anybody who has
a signed certificate from my CA can connect to tomcat - even if the client
certificate
On Wed, May 12, 2004 at 10:57:30PM +0200, Plamen Neykov wrote:
: I have standalone tomcat installation with client authentication switched on
: as described in the tomcat documentation. The problem is that anybody who has
: a signed certificate from my CA can connect to tomcat - even if the client
Thanks for the very quick reply!
But I had the certificates of the clients only initially in the keystore
(no CA cert!) but I had trouble with MSIE and Mozilla - both denied to
present the certificate to the server so that no connection was possible from
those browsers :-(
On the second
On Wed, May 12, 2004 at 11:31:11PM +0200, Plamen Neykov wrote:
: Thanks for the very quick reply!
Please, don't think me till it works. ;)
: But I had the certificates of the clients only initially in the keystore
: (no CA cert!) but I had trouble with MSIE and Mozilla - both denied to
:
I'm sure it will work ;-)
I think previously I misunderstood you - now just for my understanding - I
should create a selfsigned CA just for signing the server certificate and
then import in the keystore the client certificates which are signed with the
org's standard CA cert. And then the