Return-Path: Delivered-To: apmail-tomcat-users-archive@www.apache.org Received: (qmail 12710 invoked from network); 7 Aug 2006 23:43:02 -0000 Received: from hermes.apache.org (HELO mail.apache.org) (209.237.227.199) by minotaur.apache.org with SMTP; 7 Aug 2006 23:43:02 -0000 Received: (qmail 86959 invoked by uid 500); 7 Aug 2006 23:42:50 -0000 Delivered-To: apmail-tomcat-users-archive@tomcat.apache.org Received: (qmail 86878 invoked by uid 500); 7 Aug 2006 23:42:50 -0000 Mailing-List: contact users-help@tomcat.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: "Tomcat Users List" Delivered-To: mailing list users@tomcat.apache.org Received: (qmail 86867 invoked by uid 99); 7 Aug 2006 23:42:50 -0000 Received: from asf.osuosl.org (HELO asf.osuosl.org) (140.211.166.49) by apache.org (qpsmtpd/0.29) with ESMTP; Mon, 07 Aug 2006 16:42:50 -0700 X-ASF-Spam-Status: No, hits=0.0 required=10.0 tests= X-Spam-Check-By: apache.org Received-SPF: neutral (asf.osuosl.org: local policy) Received: from [216.148.227.154] (HELO rwcrmhc14.comcast.net) (216.148.227.154) by apache.org (qpsmtpd/0.29) with ESMTP; Mon, 07 Aug 2006 16:42:50 -0700 Received: from [192.168.0.101] (c-69-255-56-239.hsd1.md.comcast.net[69.255.56.239]) by comcast.net (rwcrmhc14) with ESMTP id <20060807234228m14000bdvse>; Mon, 7 Aug 2006 23:42:29 +0000 Message-ID: <44D7CFE4.5040405@apache.org> Date: Mon, 07 Aug 2006 19:42:28 -0400 From: Mark Thomas User-Agent: Thunderbird 1.5.0.5 (Windows/20060719) MIME-Version: 1.0 To: Tomcat Users List Subject: Re: HTTPS and Keys References: <587f280f0608071159u4921e40cga557505f324a43a0@mail.gmail.com> In-Reply-To: <587f280f0608071159u4921e40cga557505f324a43a0@mail.gmail.com> X-Enigmail-Version: 0.94.0.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit X-Virus-Checked: Checked by ClamAV on apache.org X-Spam-Rating: minotaur.apache.org 1.6.2 0/1000/N William Chu wrote: > Hello, > > When configuring tomcat for HTTPS, how does tomcat know which key to > use? If you run the keytool command multiple times, you generate > multiple keys. The keys are stored in the .keystore file and so if I > generate multiple keys, which one gets picked? By default, the one with the alias "tomcat". AFAICT there is an undocumented attribute available on the https connector called keyAlias that should allow you to change this. Mark --------------------------------------------------------------------- To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org For additional commands, e-mail: users-help@tomcat.apache.org