Question : Create SAN cert for Tomcat on internal CA

Hi,
Im trying to find information on how to create a san certificate for a Tomcat with our internal Windows server 2008 std CA

One thing I have found yet is a public certificatestore wich says that I should create the request (with keytool) the normal way and add the san-names in my orderform. I want to use our internal CA if possible

I have also tried to create the csr, and adding SAN names in the Additional attributes field (under where I paste the csr) - but the cert does not contain any SAN names.
I used this format
san:dns=name1.domain.com&dns=name1.domain.com
...wich is the format referred to in this document http://support.microsoft.com/kb/931351

Regards,
Joakim

Answer : Create SAN cert for Tomcat on internal CA

Hi,
I exported the certificate with the private key as a .pfx file and edited server.xml to use this file as a keystore like this:

maxThreads="150" minSpareThreads="25" maxSpareThreads="75"
enableLookups="false" disableUploadTimeout="true"
acceptCount="100" scheme="https" secure="true"
clientAuth="false" sslProtocol="TLS" SSLEnabled="true"
keystoreFile="D:\certs\MySanCert.pfx"
keystorePass="****"
keystoreType="PKCS12" />

After a restart of the Tomcat service everything is working as it should - so - case closed

regards,
Joakim

Random Solutions

"Send on behalf" query

Email banner without getting caught in Spam

SCO UNIX needs to Join a Windows Workgroup

Using a Verizon Aircard to VPN to a Sonicwall PRO 230. Can't connect!

Port fast on Cisco switch?

WinME / WinXP Stumper

To Bridge or not to Bridge using ADSL Modem and Symantec 300 Series Gateway Security Appliance

how to use two dial-up modems

I need site to redirect to subfolder but only when domain is typed

Conflicker Worm Removed but Still account lockout