On 12/07/2012 20:10, Burghard W.V. Britzke wrote: > ?! Yep, I have no idea what they're on about either.
:P p > Am 12.07.2012 um 19:22 schrieb Puneet Dewan: > >> The below way I used to deploy the war and able to use it :) >> >> >> ---------- Forwarded message ---------- >> From: Puneet Dewan <[email protected]> >> Date: Thu, Jul 12, 2012 at 10:19 PM >> Subject: Re: Client Authentication using SSL >> To: Tomcat Users List <[email protected]> >> >> >> Excellent suggestions and the link at the bottom . >> On my local machine using keystore and keypass was not working while I was >> configuring a WAR on https. >> I made use of truststoreFile and truststorePass in connector tag. >> e.g >> >> < Connector SSLEnabled="true" >> acceptCount="100" >> connectionTimeout="20000" >> executor="tomcatThreadPool" >> keyAlias="tomcat" >> keystoreFile="${catalina.base}/conf/tomcat.keystore" >> keystorePass="changeme" >> >> truststoreFile="${catalina.base}/conf/tomcat.keystore" >> truststorePass="changeme" >> maxKeepAliveRequests="15" >> port="8443" >> protocol="org.apache.coyote.http11.Http11Protocol" >> redirectPort="8443" >> scheme="https" >> secure="true"/> >> >> >> >> On Wed, Jul 11, 2012 at 10:05 PM, Jeffrey Janner < >> [email protected]> wrote: >> >>> Looking into implemented two-factor Auth for Tomcat with first factor >>> being our current userid/password form. >>> I figured that the second factor could be Client Authentication using SSL, >>> as it seems readily available in Tomcat. >>> Aside from the wonderful Tomcat documentation on configuring the >>> <connector> element, does anyone else have any suggested reading on the >>> subject? >>> Any gotchas I should look for? >>> >>> Jeffrey Janner >>> __________________________________________________________________________ >>> >>> Confidentiality Notice: This Transmission (including any attachments) may >>> contain information that is privileged, confidential, and exempt from >>> disclosure under applicable law. If the reader of this message is not the >>> intended recipient you are hereby notified that any dissemination, >>> distribution, or copying of this communication is strictly prohibited. >>> >>> If you have received this transmission in error, please immediately reply >>> to the sender or telephone (512) 343-9100 and delete this transmission from >>> your system. >>> > > > --------------------------------------------------------------------- > To unsubscribe, e-mail: [email protected] > For additional commands, e-mail: [email protected] > -- [key:62590808]
signature.asc
Description: OpenPGP digital signature
