adminpeter
asked on
How-To generate client certificate
Hi Experts,
i need some indications or help regarding client certificate access to web applications.
i have a servlet based web application running on port 443. login is done with user/pasword but i want to enhance the system security and allow connections only for those clients that have a valid client certificate.
on server side "need client authent" is activ and i cannot get a connection to the server regarding that i have no valid certificate. good ... but how i create this certificate. shure i need some file to import as certificate in my browser ...
is it possible to do all work with java's keytool ?
do you know about a step-by-step how to ?
thank you in advance,
Peter.
Environment: Jetty 5, Java 1.5
i need some indications or help regarding client certificate access to web applications.
i have a servlet based web application running on port 443. login is done with user/pasword but i want to enhance the system security and allow connections only for those clients that have a valid client certificate.
on server side "need client authent" is activ and i cannot get a connection to the server regarding that i have no valid certificate. good ... but how i create this certificate. shure i need some file to import as certificate in my browser ...
is it possible to do all work with java's keytool ?
do you know about a step-by-step how to ?
thank you in advance,
Peter.
Environment: Jetty 5, Java 1.5
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
http://jetty.mortbay.org/jetty/faq?s=400-Security&t=ssl
ASKER
Ok i figured it out.
(Hardest problem was to export the private key from a JKS keystore and convert
this to PEM format).
girionis, ok you get the points to close this issue.
Thank you very much,
Peter.
(Hardest problem was to export the private key from a JKS keystore and convert
this to PEM format).
girionis, ok you get the points to close this issue.
Thank you very much,
Peter.