RE: Question related to mutual authentication

-Original Message- From: Christopher Schultz [mailto:ch...@christopherschultz.net] Sent: Thursday, November 9, 2017 11:16 AM To: users@tomcat.apache.org Subject: Re: Question related to mutual authentication Mark, On 11/9/17 5:02 AM, Mark Thomas wrote: > On 8 November 2017 21:09:11

Re: Question related to mutual authentication

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Mark, On 11/9/17 5:02 AM, Mark Thomas wrote: > On 8 November 2017 21:09:11 GMT+00:00, Nicolas Therrien > wrote: > > > >> My understanding is that when "certificateVerification" is set >> to "required", the

Re: Question related to mutual authentication

On 8 November 2017 21:09:11 GMT+00:00, Nicolas Therrien wrote: >My understanding is that when "certificateVerification" is set to >"required", the server would perform the same verification as the >client does, that is: > >1) Verify the incoming certificate