tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From QM <>
Subject Re: SSLPeerUnverifiedException
Date Thu, 29 Apr 2004 15:32:43 GMT
On Thu, Apr 29, 2004 at 11:17:43AM -0400, Jeremy Brown wrote:
: Just checking once more...does anyone know how I can get this message 
: out of the logs, aside from commenting it out and recompiling Tomcat?

: [included exceptions for the archives]
: > peer not authenticated
: > 
: >

Two ways, both of which require some reading on JSSE and SSL:

1/ import the client certs (preferably, the client certs' CAs) into the
keystore used by Tomcat.

2/ Specify a different TrustManager, one that lets any client cert 
   through with blind trust.

#1 is clearly the safer way, if you're using client certs to

I don't know whether #2 is possible going through Tomcat, but chances
are you can specify the class on the commandline with a "-D" (similar
to how you can specify which XML toolkit to use).  Read up on the 
TrustManager class and write an impl that doesn't check the cert.



software  --
tech news --

To unsubscribe, e-mail:
For additional commands, e-mail:

View raw message