Reputation: 539
Mantaining Certificates in Tomcat 6 to avoid end user to add an exception on browser
What do I need to configure in Tomcat6 which will prevent user from adding an exception on browser when they access my website? The case with me is that every time a new user is accessing my website then the add an exception page comes up and I do not need this. Kindly help.
Thanks
Upvotes: 1
Views: 108
Answers (1)
Reputation: 1760
The SSL certificate that you install in your tomcat must be signed by a Certificate Authority that your browser recognizes as trusted. Meaning that you have two possibilities: 1) Let your server-side certificate be signed by a known Certificate Authority like Verisign, this will cost you some money 2) Create an own Certificate Authority and 'distribute' it to your clients which will have to install it in their browser as trusted CA
Upvotes: 1
Related Questions
- Tomcat and SSL Client certificate
- How to make Tomcat 7 prompt for a client certificate
- SSLHandshakeException with valid certificate on Tomcat server
- How to enforce https with tomcat?
- Tomcat redirect on ERR_BAD_SSL_CLIENT_AUTH_CERT
- Ignore certificate validation - Tomcat8 WebSocket (JSR-356)
- Ignore SSL Certificate in a Servlet
- Writing Custom SSL Context for Tomcat
- How to handle browser warning for SSL certificate
- disable client certificate prompt