Yep, this is a problem. And, as I said, we don't have keystores, so
even if it did pick up the new cert it still wouldn't work for us.
jean-frederic clere wrote:
OK I have added a new CA using:
+++
[EMAIL PROTECTED]:~> $JAVA_HOME/bin/keytool -import -trustcacerts -file
~/CERTS/demoCA/cacert.pem -keystore $JAVA_HOME/jre/lib/security/cacerts
+++
To get Tomcat accepting client certificates from this CA I had to
restart it... Bad.
--
Chad La Joie 315Q St. Mary's Hall
Project Sentinel 202.687.0124
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
