A
Alex Hunsley
Slight OT, but this appears to be the best place to ask!
I'm configuring tomcat to accept secure (SSL) connections as well as
it's existing unsecure connections. Instructions I'm looking at tell me
how to use keytool to make a self-signed certificate (which I'm happy
with - certs aren't important here).
However, I notice that in server.xml for tomcat, the connector for a
secure connection lets you specify clientAuth="false", which apparently
nmeans certificates are not required from the client. Question is, if
I'm just using clientAuth="false", does that imply I don't need to
generate a keystore/certificate at all?
thanks,
alex
I'm configuring tomcat to accept secure (SSL) connections as well as
it's existing unsecure connections. Instructions I'm looking at tell me
how to use keytool to make a self-signed certificate (which I'm happy
with - certs aren't important here).
However, I notice that in server.xml for tomcat, the connector for a
secure connection lets you specify clientAuth="false", which apparently
nmeans certificates are not required from the client. Question is, if
I'm just using clientAuth="false", does that imply I don't need to
generate a keystore/certificate at all?
thanks,
alex