The accepted CAs are in /jre/lib/security/cacerts which you manage with keytool. This only comes into play if you require a client certificate. Then the user's browser only presents certificates from your CA list.
Jim --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
