Hi I know in the tomcat 4.0.2 source code, the line in SSLServerSocketFactory.java for enabling the trustManagerFactory is commented out this disabling the client authentication capability.
// Create the trust manager factory used for checking certificates /* trustManagerFactory = TrustManagerFactory.getInstance(algorithm); trustManagerFactory.init(keyStore); */ Is this functionality definitely unusable at the moment ? Is it possible to uncomment the lines and recompile with the TrustManagerFactory to enable client authentication ? Any anticipated timeline when 4.0 client authentication will be enabled. Any info/direction would be greatly appreciated as we are trying to do client authenication with tomcat standalone without having to go the apache/tomcat router. Many Thanks Stephen [EMAIL PROTECTED] ********************************************************************** This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you have received this email in error please notify the system manager. This footnote also confirms that this email message has been swept by MIMEsweeper for the presence of computer viruses. ********************************************************************** -- To unsubscribe, e-mail: <mailto:[EMAIL PROTECTED]> For additional commands, e-mail: <mailto:[EMAIL PROTECTED]>