Thanks Philip.. ever so much help. I really appreciate this!
-Original Message-
From: Philippe Johan [mailto:[EMAIL PROTECTED]
Sent: 24 May 2005 08:55
To: tomcat-user@jakarta.apache.org
Subject: RE: Client Authentication certificates
Hi Mark,
To answer your questions:
- You can
Thank you ever so much. The certificates will be for a subset of my clients
and so I am not that worried. I really appreciate your help.
-Original Message-
From: Mark Thomas [mailto:[EMAIL PROTECTED]
Sent: 23 May 2005 23:13
To: Tomcat Users List
Subject: Re: Client Authentication
.
Distributing certificates, and more important the matching private keys,
is not an easy thing to do with the OpenSSL command-line tools.
Regards,
Johan
-Original Message-
From: Tim Diggins [mailto:[EMAIL PROTECTED]
Sent: maandag 23 mei 2005 12:24
To: Tomcat Users List
Subject: Re: Client
Mark Benussi wrote:
Can I build a root certificate that is not signed by someone like Verisign
or any other trusted root? (This is a cost issue).
Yes, but then people have to trust your root certifcate. One of the
services Verisign and the other CAs offer (depending on the type of
certificate yo
Hi Mark -
I saw it, and...
don't know the answers for the second two (don't fully understand the
questions) , but yes, you can create your own Certificate Authority, no
problem -- however your clients will each then either have to
click-through various warning dialogues each time, or they will
