Common Access Card(CAC) authenication| JBoss.org Content Archive (Read Only)

1 2 Previous Next 17 Replies Latest reply on Feb 12, 2013 2:47 AM by satish.kinikiri Go to original post

15. Re: Common Access Card(CAC) authenication

patelr8 Feb 11, 2013 12:28 PM (in response to satish.kinikiri)

Thanks Satish, Yes - I we need both authentication Active Directory and CAC. As of now I have my server.xml look like following, what should I be adding for truststoreFile="",truststorePass="" and ciphers="" parameter.
should I be generating these if so, how?

<Connector protocol="HTTP/1.1" SSLEnabled="true"
                                  port="443" address="${jboss.bind.address}"
                                  scheme="https" secure="true" clientAuth="true"
                                  keystoreFile="${jboss.server.home.dir}/License/MyKeyStore.jks"
                                  keystorePass="password"
                                  sslProtocol = "TLS" />
Actions
16. Re: Common Access Card(CAC) authenication

jfclere Feb 12, 2013 2:28 AM (in response to patelr8)

Note that you can also post the authemticator part in the picketlink forum
Actions
17. Re: Common Access Card(CAC) authenication

satish.kinikiri Feb 12, 2013 2:47 AM (in response to satish.kinikiri)

you need not to have cipers parameters,its not to do with CAC

This tag in ur xml is enough

keystoreFile="${jboss.server.home.dir}/License/MyKeyStore.jks"
keystorePass="password"
You dont need to have truststoreFile="",truststorePass=""

keystoreFile or truststoreFile are the place holders for ur trust store file.
a key store file can store multiple certificates
You can store your root ca certificate in keystoreFile or create a new trust file(like i did truststoreFile ) and put root CA certificate in that file.

creating a trust file and addin ca certificate in that are done using java key tool command
You can refer java key tool doc for the commands
Actions

1 2 Previous Next

Go to original post