tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Geet Chandra <gee...@gmail.com>
Subject Re: How to configure certificate file (*.cer) in Tomcat 6
Date Mon, 30 Jan 2012 04:42:55 GMT
My requirements is how to configure *.cer in Tomcat's server.xml file.

You mean you want to set up a connector that uses SSL?
- Yes

Actually I don't want to use "keytool -import" command to import the
*.cer file into *.keystore file.

Any particular reason for your preference?

- The customer has got very secure environment...they don't want to use the
*.keystore being shipped
with particular product.

You're not really giving us much information to go on.  What version of
Tomcat? Java? Operating system?

- I am using Tomcat 6.x, J2EE based web application on Windows 2003 64 bit
R2, SP2 OS.

Is it possible to configure like this

<Connector port="8446" maxHttpHeaderSize="8192"
protocol="org.apache.coyote.http11.Http11Protocol" SSLEnabled="true"
               maxThreads="150" minSpareThreads="25" maxSpareThreads="75"
               enableLookups="false" disableUploadTimeout="true"
               acceptCount="100" scheme="https" secure="true"
               clientAuth="want" sslProtocol="TLS"
               keystoreFile="c:/tomcat.keystore"
               truststoreFile ="C:/user.cer"
             />
     @END_ENABLESTANDALONEHTTPS@-->

Please let me know the correct syntax to configure "user.cer" in server.xml


On Sat, Jan 28, 2012 at 10:17 PM, Pid <pid@pidster.com> wrote:

> On 28/01/2012 14:22, Geet Chandra wrote:
> > Hi,
> >
> > My requirements is how to configure *.cer in Tomcat's server.xml file.
>
> You mean you want to set up a connector that uses SSL?
>
>
> > Actually I don't want to use "keytool -import" command to import the
> *.cer
> > file into *.keystore file.
>
> Any particular reason for your preference?
>
>
> > Is that possible to use configure *.cer file without using "keytool
> > -import" command.
>
> You can configure SSL using either JSSE/keystore or OpenSSL and .crt/.pem.
>
>
> > Appreciate your help.
>
> You're not really giving us much information to go on.  What version of
> Tomcat? Java? Operating system?
>
>
> p
>
>
> --
>
> [key:62590808]
>
>


-- 
Thanks & Regards
Geet

Mime
  • Unnamed multipart/alternative (inline, None, 0 bytes)
View raw message