"Praveen Pat" <epoch.ti...@gmail.com> wrote in message
news:4457dc171002041505p239b835p5107c8efa8f1d...@mail.gmail.com...
Hello:
I am running Tomcat 6 in SSL mode with ClientAuth=true.
Here are my Connector Properties:
<Connector protocol="org.apache.coyote.http11.Http11Protocol"
port="8443"
SSLEnabled="true"
maxThreads="150"
scheme="https"
secure="true"
clientAuth="true"
sslProtocol="TLS"
keystoreFile="one.mamoi.semdev.com.pkcs12"
keystoreType="PKCS12"
keystorePass="changeit"
truststoreFile="server.truststore"
truststorePass="changeit"
truststoreType="JKS"
crlFile="SEMDEV TEST CA.crl"
/>
The problem I have is how to update the CRL.
If I do not update the CRL, Tomcat does not let any of my users in. It
blocks all the users.
To update the CRL, I have to stop the Tomcat, and I am trying to avoid it.
This can't be done easily. The CRL file is read only when the Connector is
initialized, it isn't tracked after that. It is possible to stop and start
the Connector using JMX (or otherwise for Embedded), which is a little bit
better than restarting Tomcat. But I haven't tried doing this myself, so
there may be other issues that get in the way.
Thanks in Advance.
Regards,
Praveen
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org
