tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Marcello Marangio" <m.maran...@innova.puglia.it>
Subject R: clent authentication using a smard card
Date Tue, 20 Oct 2009 10:25:09 GMT


> -----Messaggio originale-----
> Da: Jason Pyeron [mailto:jpyeron@pdinc.us]
> Inviato: martedì 20 ottobre 2009 12.13
> A: 'Tomcat Users List'
> Oggetto: RE: clent authentication using a smard card
> 
> 
> 
> 
> > -----Original Message-----
> > From: Marcello Marangio [mailto:m.marangio@innova.puglia.it]
> > Sent: Tuesday, October 20, 2009 5:10
> > To: 'Tomcat Users List'
> > Subject: R: clent authentication using a smard card
> >
> >
> >
> > > -----Messaggio originale-----
> > > Da: Jason Pyeron [mailto:jpyeron@pdinc.us]
> > > Inviato: lunedì 19 ottobre 2009 20.21
> > > A: 'Tomcat Users List'
> > > Oggetto: RE: clent authentication using a smard card
> > >
> > <cut>
> > > >
> > > >
> > >
> > > Do you have access to IE on windows for this? If you do, it will be
> > > much quicker, and easier.
> > >
> > > I am just trying to get a baseline established, so I can
> > plow throught
> > > with my ten steps.
> > >
> >
> > Ok.
> > I made the same thing with IE and in the debug it says "null
> > cert chain"
> > during the client authentication handshake.
> > Now I am confused...
> >
> 
> Lets step back and look.
> 
> Can you provide the smart card and server certificate chain (no keys
> please)?

Hang on a second...
The server certificate is an self signed certificate I made with keytool.
The smart card certificate, instead, is a real one, I use to legally sign
electronic documents; the issuer is an Italian CA.

Do you expect the issuer of the smart card certificate to be the same as the
server one?

How can I print out the certificate chain?
Thanks again
M

> 
> > M
> >
> >
> > ---------------------------------------------------------------------
> > To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
> > For additional commands, e-mail: users-help@tomcat.apache.org
> >
> >
> 
> 
> 
> --
> -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
> -                                                               -
> - Jason Pyeron                      PD Inc. http://www.pdinc.us -
> - Principal Consultant              10 West 24th Street #100    -
> - +1 (443) 269-1555 x333            Baltimore, Maryland 21218   -
> -                                                               -
> -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
> This message is copyright PD Inc, subject to license 20080407P00.
> 
> 
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
> For additional commands, e-mail: users-help@tomcat.apache.org



---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org


Mime
View raw message