Frank, On 15.2.2014 7:02, Frank BONNET wrote:
seems to work without it !
I recommend that you always import intermediate certificates into the keystore. If you don't, some clients / web browsers will find a way to lookup for missing certificates, but others will fail.
Therefore, it is much better if you serve the complete chain (server certificate + intermediate certificates) to the client.
If you are not sure if certificate chain served to the clients is complete, there is plenty of on-line tools to check that for you.
-Ognjen --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
