Hi, I have an apache server in front of Tomcat/Jboss, the former receives the client cert and does revocation list and trust validation.
I need to pass the client cert to Tomcat only to check the SubjectAltNames. As far as trust accreditation is done by apache, does Tomcat need to have a keystore and https set? Thanks, André -- View this message in context: http://old.nabble.com/Client-cert-authentication-tp28287654p28287654.html Sent from the Tomcat - User mailing list archive at Nabble.com. --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
