You are viewing a plain text version of this content. The canonical link for it is here.

Posted to users@tomcat.apache.org by Matej Kafadar <ma...@setcce.org> on 2005/03/04 17:36:26 UTC

tomcat 4.1.x with jdk1.4.2 ssl certificate(4096-key length) support

Hello,

is it possible to have tomcat 4.1.x running with jdk1.4.2 and have SSL 
with client authentication(client has certificate issued by CA which has 
certificate with public key length of 4096 bit)?

Java 1.4 doesn't support rsa key size of 4096 (only to 2084). With 
keytool you aren't able to import certificate(4096) to cacerts. I 
instaled BouncyCastle provider(which support 4096 key). Only when I set 
it to be default provider, I manageed to import certificate(4096) to 
cacerts. TomCat doesn't work if default provider isn't SUN, so ssl 
doesn't work even with smaller keys.

I solved this problem by installing jdk1.5 which doesn't have problems 
with certificate(4096) and TomCat works fine.

But I really want to have jdk1.4 and certificate(4096) support.

Does anybody know how to solve this problem, or how to configure jdk1.4 
to support certificate(4096)?

Thanks

	Matej

---------------------------------------------------------------------
To unsubscribe, e-mail: tomcat-user-unsubscribe@jakarta.apache.org
For additional commands, e-mail: tomcat-user-help@jakarta.apache.org