-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Gabriel,
On 10/25/12 1:43 PM, Gabriel Huerta Araujo wrote: > Even though Tomcat tells me to purchase a certificate from those > places you mention, is there any way to get this certificate free? Most CAs will issue you a free 30-day certificate to make sure that everything is going to work. If you want a long-term cert, you may as well just buy one because the process is such a pain in the neck: it's going to work. > As a matter of fact I am just testing how to use htpps connection > with Tomcat (an open source product). If you just need an SSL connection, then there is no reason you couldn't use a self-signed certificate. The only problem is that your web browser is going to complain. Most web browsers have an option to accept the certificate permanently so you don't get security warnings all the time. If you want a free, well-recognized certificate, I can recommend StartSSL: https://www.startssl.com/ After you validate that you control a domain (via email), you can create 1-year basic certificates entirely for free. Here's their comparison chart which includes their rate card and browser/OS support: https://www.startssl.com/?app=40 All major OSs and browsers currently support StartSSL, though, unfortunately, Java does not: you'll have to import their CA and intermediate certificates into a local trust store if you want to use a Java client with these certificates. - -chris -----BEGIN PGP SIGNATURE----- Version: GnuPG/MacGPG2 v2.0.17 (Darwin) Comment: GPGTools - http://gpgtools.org Comment: Using GnuPG with Mozilla - http://www.enigmail.net/ iEYEARECAAYFAlCJfIoACgkQ9CaO5/Lv0PD68wCgmZfuZIHr0CU65k8mbZXF0DvX Ds4An0S9oDEfpSaZlq+rlKodk/LLvv04 =M3NB -----END PGP SIGNATURE----- --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
