tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Bill Barker" <>
Subject Re: JSSE question
Date Sat, 05 Dec 2009 03:24:41 GMT

"Vadim Letitchevski" <> wrote in message
>I am confused. Can Tomcat use only JKS keystore or it can also use pem or 
>some other certificate storages?

In the Tomcat docs (, 
it shows how to use a PKCS12 keystore.  At some point that should be updated 
to include an example for using a PKCS11 keystore.

The actual answer is that the JSSE Connector can use any keystore format 
that is supported by your Java vendor.  In particular, with the Sun JVM, you 
can't use PEM (however the APR Connector does use PEM).  However, it is 
usually pretty easy to convert PEM to PKCS12 (see the link above for an 

> Thanks
> Vadim.
> (310)765-3812

To unsubscribe, e-mail:
For additional commands, e-mail:

View raw message