Thanks for getting back Filip. I had done this too.. what I did was : created a server keystore and imported the client certificate into it. Then the gave the server keystore location to the 'truststoreFile' parameter. Once this modification is done in server.xml I restart tomcat but its not really helping me out.
Thanks, -Subhash- -----Original Message----- From: Filip Hanik - Dev Lists [mailto:[EMAIL PROTECTED] Sent: Thursday, September 27, 2007 12:32 AM To: Tomcat Users List Subject: Re: Setting ClientAuth parameter to true Your trust store will need to contain the cert the client is supposed to send up, Filip [EMAIL PROTECTED] wrote: > Hi, > > > > I am unable to set client authentication for SSL in tomcat 5.5.2. I have > generated the certificate for the client and imported the same into the > server's keystore so that the server can verify the client's > certificate. The following is the modification I make on server.xml. > > > > <Connector port="8443" maxHttpHeaderSize="8192" > > maxThreads="150" minSpareThreads="25" > maxSpareThreads="75" > > enableLookups="false" disableUploadTimeout="true" > > acceptCount="100" scheme="https" secure="true" > > clientAuth="true" sslProtocol="TLS" > > > keystoreFile="D:\Projects\Starwood\WSOverSSL\axis\server.keystore" > keystorePass="xxxxxx" > > > truststoreFile="D:\Projects\Starwood\WSOverSSL\axis\server.keystore" > truststorePass="xxxxxx " /> > > > > once this change is done and the server is restarted, I am not able to > hit this url https://localhost:8443 <https://localhost:8443/> . > > > > At the same time, if I change the value of clientAuth back to "false" I > am able to access the url. > > > > Can some pls help where I went wrong? > > > > Thanks, > > -Subhash- > > > > This e-mail and any files transmitted with it are for the sole use of the intended recipient(s) and may contain confidential and privileged information. > If you are not the intended recipient, please contact the sender by reply e-mail and destroy all copies of the original message. > Any unauthorized review, use, disclosure, dissemination, forwarding, printing or copying of this email or any action taken in reliance on this e-mail is strictly > prohibited and may be unlawful. > > ------------------------------------------------------------------------ > > No virus found in this incoming message. > Checked by AVG Free Edition. > Version: 7.5.488 / Virus Database: 269.13.30/1027 - Release Date: 9/24/2007 11:27 AM > --------------------------------------------------------------------- To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] This e-mail and any files transmitted with it are for the sole use of the intended recipient(s) and may contain confidential and privileged information. If you are not the intended recipient, please contact the sender by reply e-mail and destroy all copies of the original message. Any unauthorized review, use, disclosure, dissemination, forwarding, printing or copying of this email or any action taken in reliance on this e-mail is strictly prohibited and may be unlawful. --------------------------------------------------------------------- To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
