Hi Conway, All depends on your server setup. If you have Tomcat 'behind' Apache, NginX or IIS you should generate csr and install certificate on those software which is on front of Tomcat. If you have only Tomcat on the server you should familiarize with Tomcat+SSL guides. As a example you can take following blog entry: http://linuxadmin.com.pl/index.php/tomcat-and-ssl-certificates-small-how-to/
CSR is generated per certificate, so if you have another ssl certificate for sure you will need to create another csr. Best Regards -- Piotr Pawlowski GOYELLO System Administrator ________________________________________ From: Conway Liu [c...@xtra.co.nz] Sent: Friday, December 23, 2011 22:13 To: users@tomcat.apache.org Subject: Creating CSR for Purchasing SSL Certificate from VeriSign Hi, We are running a Tomcat website on Windows 2008 R2. The SSL certificate for this website has expired. Instead of renewing the SSL certificate from the current SSL provider, we want to buy new SSL certificate from VeriSign. We are aware that we need to first generate a Certificate Signing Request. I've landed on this page: https://knowledge.verisign.com.au/support/ssl-certificates-support/index?pag e=content <https://knowledge.verisign.com.au/support/ssl-certificates-support/index?pa ge=content&id=AR235> &id=AR235 This page has a list of links for the instructions of different types server. My question is, should I go for Apache (ApacheSSL mod_ssl ), Microsoft (Windows 2008 - IIS 7.0), or Tomcat (Tomcat)? Also, if we later add another Tomcat site (with a different domain name) on the same Windows 2008 R2 server, do we have to generate another CSR to purchase another SSL certificate? Any suggestion is very much appreciated. Conway Liu --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
