Hi all, It is probably a stupid question, but .... I have standalone tomcat installation with client authentication switched on as described in the tomcat documentation. The problem is that anybody who has a signed certificate from my CA can connect to tomcat - even if the client certificate is not in the tomcat keystore ..... How can I make sure that only clients with certificates existing in the tomcat keystore are allowed to connect?
Thanks a lot!
pgp00000.pgp
Description: signature