-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Michael,
On 4/12/2010 4:55 PM, Michael Dockery wrote:
> because tomcat has the root for the client cert loaded into its truststore,
> and the matching client cert "subject" name (ie: user) loaded in its auth
> realm
> the client is therefo
Mon, April 12, 2010 9:32:32 AM
Subject: Re: Installing certificate chain on Tomat
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
/U,
On 4/10/2010 3:31 PM, /U wrote:
> maxThreads="150" scheme="https" secure="true"
> clien
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
/U,
On 4/10/2010 4:13 PM, /U wrote:
> i am confused about one thing: whil keystore is explicitly specified
> in connector config, what about the truststore?
It can also be configured in the . Have you not read any of
the documentation?
> i assume t
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
/U,
On 4/10/2010 3:31 PM, /U wrote:
>maxThreads="150" scheme="https" secure="true"
>clientAuth="false" sslProtocol="TLS"
>keystoreFile="/users/me/.keystore" keystorePass="changeit"
> />
Are you
I tried this on different systems (*nix and XP) and hence the
differences in my excerpts. but in each case, the connector
config correct refers to keystore. i am sorry i quoted different
configs - will stick to *nix from now on.
i am confused about one thing: whil keystore is explicitly specifie
Thank you Chris for your suggestion.
Here is my connector:
I have received the following keys/certs from CA:
- file1: private key for myhost
- file2: identity certificate for "myhost" signed by "CA1"
- file3: certificate for "CA1" signed by "entrust"
I installed private key (fi
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
/U,
On 4/10/2010 10:07 AM, /U wrote:
> am i right in assuming that the identity certificate+private key is
> installed
> in keystoreFile of the SSL connector (C:\keystore below) and the CA
> certificate chain is installed in jre/lib/security/cacerts
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
/U,
On 4/10/2010 12:01 AM, /U wrote:
> i am installing certificate chain on tomcat 6.x (JRE 1.6). From my CA I have
> private key (PEM),
> identity cert (PEM) (CA X trusts myhost)
>and a cert chain file (PEM file) (entrust trusts CA X)
>
On 04/10/2010 12:01 AM, /U wrote:
i am installing certificate chain on tomcat 6.x (JRE 1.6). From my CA I have
private key (PEM),
identity cert (PEM) (CA X trusts myhost)
and a cert chain file (PEM file) (entrust trusts CA X)
The cert chain is: (entrust) === trusts ==> (CA X) ==
___
> From: /U
> To: users@tomcat.apache.org
> Sent: Sat, April 10, 2010 10:07:47 AM
> Subject: Re: Installing certificate chain on Tomat
>
>
> hello Pid,
>
> am i right in assuming that the identity certificate+private key is
> installed
> i
i had to install my ca root certs in a keystore specificed/referenced by the
"truststorefile" parameter
NOT the keystorefile parm
From: /U
To: users@tomcat.apache.org
Sent: Sat, April 10, 2010 10:07:47 AM
Subject: Re: Installing certificate chai
rom: "/U" [uma...@comcast.net]
> Date: 04/10/2010 12:02 AM
> To: users@tomcat.apache.org
> Subject: Re: Installing certificate chain on Tomat
>
> Note: Original message sent as attachment
>
> -
> T
: users@tomcat.apache.org
> Subject: Re: Installing certificate chain on Tomat
>
> Note: Original message sent as attachment
>
> -
> To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
> For additional
Maybe you are getting the certificate myhost issued by CA X is not trusted,
because you a fucking virus
-Original Message-
From: "/U" [uma...@comcast.net]
Date: 04/10/2010 12:02 AM
To: users@tomcat.apache.org
Subject: Re: Installing certificate chain on Tomat
Note: Origin
14 matches
Mail list logo
