Tomcat Server/Client Self-Signed SSL Certificate

Question

I have an Apache Tomcat 6.x server running with a self-signed SSL certificate. I want the client to present their own certificate to the server so I can authenticate them b

Answer 1

Create certificate:

keytool -genkey -alias tomcat -keyalg RSA -keystore /home/bob/mykeystore

Enter all the data for the self signed certificate you need then edit Tomcat's server.xml and specify the keystore properties on the SSL connector, e.g.:

or follow the Tomcat docs...

http://tomcat.apache.org/tomcat-6.0-doc/ssl-howto.html