You are viewing a plain text version of this content. The canonical link for it is here.
Posted to users@tomcat.apache.org by Christopher Schultz <ch...@christopherschultz.net> on 2017/05/26 20:29:48 UTC
Re: [OT] server.xml password encryption instead of plain text
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Harri,
On 5/26/17 3:32 AM, Pesonen, Harri wrote:
> It is possible to use Windows certificate store like this:
>
> <Connector SSLEnabled="true" address="..." clientAuth="false"
> keyAlias="..." keystoreFile="" keystoreType="Windows-My"
> maxThreads="150" port="8443"
> protocol="org.apache.coyote.http11.Http11NioProtocol"
> scheme="https" secure="true" sslEnabledProtocols="TLSv1"
> sslProtocol="TLS"/>
>
> You have to enter keyAlias that matches the subject of the
> certificate in Windows user's personal certificates. Then you don't
> need to enter password at all.
Interesting... I had never known that Java supported some OS-specific
keystore types.
https://stackoverflow.com/a/11540061/276232
- -chris
-----BEGIN PGP SIGNATURE-----
Comment: GPGTools - http://gpgtools.org
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/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=bQhr
-----END PGP SIGNATURE-----
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org