Return-Path: X-Original-To: apmail-tomcat-users-archive@www.apache.org Delivered-To: apmail-tomcat-users-archive@www.apache.org Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by minotaur.apache.org (Postfix) with SMTP id 67FBFB4FF for ; Thu, 12 Jan 2012 18:44:57 +0000 (UTC) Received: (qmail 43218 invoked by uid 500); 12 Jan 2012 18:44:53 -0000 Delivered-To: apmail-tomcat-users-archive@tomcat.apache.org Received: (qmail 43131 invoked by uid 500); 12 Jan 2012 18:44:53 -0000 Mailing-List: contact users-help@tomcat.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: "Tomcat Users List" Delivered-To: mailing list users@tomcat.apache.org Received: (qmail 43120 invoked by uid 99); 12 Jan 2012 18:44:52 -0000 Received: from nike.apache.org (HELO nike.apache.org) (192.87.106.230) by apache.org (qpsmtpd/0.29) with ESMTP; Thu, 12 Jan 2012 18:44:52 +0000 X-ASF-Spam-Status: No, hits=-0.0 required=5.0 tests=RCVD_IN_DNSWL_LOW,SPF_NEUTRAL X-Spam-Check-By: apache.org Received-SPF: neutral (nike.apache.org: local policy) Received: from [209.85.213.173] (HELO mail-yx0-f173.google.com) (209.85.213.173) by apache.org (qpsmtpd/0.29) with ESMTP; Thu, 12 Jan 2012 18:44:43 +0000 Received: by yenm6 with SMTP id m6so1264538yen.18 for ; Thu, 12 Jan 2012 10:44:22 -0800 (PST) Received: by 10.236.139.234 with SMTP id c70mr7506664yhj.33.1326393862369; Thu, 12 Jan 2012 10:44:22 -0800 (PST) Received: from [192.168.1.98] (wintouch.touchtonecorp.com. [69.238.233.81]) by mx.google.com with ESMTPS id x3sm14022063anj.13.2012.01.12.10.44.19 (version=SSLv3 cipher=OTHER); Thu, 12 Jan 2012 10:44:21 -0800 (PST) Message-ID: <4F0F2A02.6030808@touchtonecorp.com> Date: Thu, 12 Jan 2012 10:44:18 -0800 From: James Lampert User-Agent: Thunderbird 2.0.0.23 (Windows/20090812) MIME-Version: 1.0 To: Tomcat Users List Subject: Re: About certificates in Tomcat SSL support References: <4F0F14F4.1090504@touchtonecorp.com> <-8253579786976039516@unknownmsgid> In-Reply-To: <-8253579786976039516@unknownmsgid> Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 7bit X-Virus-Checked: Checked by ClamAV on apache.org >> I created a self-signed certificate for the box I was testing: >> CN = James Lampert Pid * wrote: > The Common Name must match the domain name of the server as seen by the client. Hmm. So where Keytool asks > What is your first and last name? you answer not with what it's asking for, but with the intended domain name. Makes perfect sense. Thanks. -- JHHL --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org For additional commands, e-mail: users-help@tomcat.apache.org