From: Patrick M. <pa...@ma...> - 2005-07-29 21:40:31
|
Hello there, =20 I've got two questions about Jetty and SSL and ran out of options myself... =20 I'm trying to configure Jetty to use SSL using multiple common names using Java keytool.exe. =20 I've read the tutorial at: http://jetty.mortbay.org/jetty/faq?s=3D400-Security&t=3Dssl =20 I've issued the following command lines: 1. keytool -keystore keystore -alias jettylocalhost -genkey -keyalg RSA 2. keytool -keystore keystore -alias jettyonip -genkey -keyalg RSA =20 After each I've answered all the questions. The first Common name (First and last name) I entered was "localhost" and the second "127.0.0.1". =20 Opening the site in Internet Explorer should now issue a warning about the chain of trust but not for the servername if I'm using https://localhost or https://127.0.0.1. It does however with one of them. So Jetty seems to ignore on of the keys in the keystore or I'm doing something wrong. =20 The second question is how to setup Jetty so users entering http://localhost or http://127.0.0.1 will be redirected to the secure https-equivalent without being bothered. Is this possible? =20 Best regards, =20 Patrick Mackaaij |