[Ejbca-develop] Re: [ejbca - Help] RE: How to integrate EJBCA to Applications for CA

SourceForge Headquarters 225 Broadway Suite 1600 San Diego, CA 92101 +1 (858) 454-5900

>Yes that's right it is. 
>
>I don't know how to assign access rights in Tomcat I'm sorry.
>  
>
You don't assign access right into Tomcat. For assign access right by 
certificate use Apache+mod_jk+Tomcat.
If you use SOAP,  see the project  http://soapuddi.sourceforge.net/ 
(Apache+mod_auth)

>A pfx file is in PKCS12 format while your .keystore file is in SUN JKS format.
>Tomcat requires the SUN JKS format.
>  
>
Tomcat accept PKCS12, you need to indicate in you server.xml file :

KeystoreType="PKCS12"

Example :

<Connector port="6443" 
         maxThreads="150" minSpareThreads="25" maxSpareThreads="75"
         enableLookups="false" disableUploadTimeout="true"
         acceptCount="100" debug="0" scheme="https" secure="true"
         clientAuth="false" sslProtocol="TLS" keystoreType="PKCS12"
         keystoreFile="/opt/openssl/mycert.p12" keystorePass="mysecretpass"/>


Bye
Yannick

>Cheers,
>Tomas
>
>
>______________________________________________________________________
>You are receiving this email because you elected to monitor this forum.
>To stop monitoring this forum, login to SourceForge.net and visit: 
>https://sourceforge.net/forum/unmonitor.php?forum_id=123123
>
>  
>