svn commit: r413028 - /tomcat/container/tc5.5.x/webapps/docs/ssl-howto.xml

Fri, 09 Jun 2006 05:31:13 -0700 

Author: jfclere
Date: Fri Jun  9 05:30:52 2006
New Revision: 413028

URL: http://svn.apache.org/viewvc?rev=413028&view=rev
Log:
Add description of keyAlias and note about openssl/keytool differences.

Modified:
    tomcat/container/tc5.5.x/webapps/docs/ssl-howto.xml

Modified: tomcat/container/tc5.5.x/webapps/docs/ssl-howto.xml
URL: 
http://svn.apache.org/viewvc/tomcat/container/tc5.5.x/webapps/docs/ssl-howto.xml?rev=413028&r1=413027&r2=413028&view=diff
==============================================================================
--- tomcat/container/tc5.5.x/webapps/docs/ssl-howto.xml (original)
+++ tomcat/container/tc5.5.x/webapps/docs/ssl-howto.xml Fri Jun  9 05:30:52 2006
@@ -208,12 +208,12 @@
 is Java's standard "Java KeyStore" format, and is the format created by the
 <code>keytool</code> command-line utility.  This tool is included in the JDK.
 The <code>PKCS12</code> format is an internet standard, and can be manipulated
-via (among other things) OpenSSL and Microsoft's Key-Manager.  However, 
-currently there are some limitations on the support for <code>PKCS12</code>.
+via (among other things) OpenSSL and Microsoft's Key-Manager.
 </p>
 
 <p>To import an existing certificate into a JKS keystore, please read the
 documentation (in your JDK documentation package) about <code>keytool</code>.
+Note that openssl often adds a readable comments before the key, 
<code>keytool</code>does not support that, so remove the openssl comments if 
they exist before importing the key using <code>keytool</code>.
 </p>
 <p>To import an existing certificate signed by your own CA into a PKCS12 
 keystore using OpenSSL you would execute a command like:
@@ -398,6 +398,12 @@
     <td>Add this element if your are using a different format for the 
         TrustStore then you are using for the KeyStore.  The valid values are
         <code>JKS</code> and <code>PKCS12</code>.</td>
+  </tr>
+  <tr>
+   <td><code>keyAlias</code></td>
+    <td>Add this element if your have more than one key in the KeyStore.
+        If the element is not present the first key read in the KeyStore
+        will be used.</td>
   </tr>
 </table>
 



---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Reply via email to