keytool needed??

Hi,

I have a couple of questions.
I installed CAS3.2.1 in my local workstation Windows XP with Tomcat 5.5.
It works just fine with my local Mysql and LDAP. I deployed my local CAS
to my company's Tomcat web server It works fine. Now I want to link the
server CAS to the applications. I mean re-direct process.

I used demo instruction http://www.ja-sig.org/wiki/display/CASUM/Demo
to install my workstation CAS for a testing. I use keystore file...etc

My question is if I use to do the same thing by using keytool to
self-author a server certificate in company's web server?  for example,
do I need to add the following to server.xml


<!-- Define a SSL HTTP/1.1 Connector on port 8443 -->
<Connector port="8443" maxHttpHeaderSize="8192"
maxThreads="150" minSpareThreads="25" maxSpareThreads="75"
enableLookups="false" disableUploadTimeout="true"
acceptCount="100" scheme="https" secure="true"
clientAuth="false" sslProtocol="TLS"
keystoreFile="C:/Documents and Settings/xxxxx/.keystore"
keystorePass="changeit"
truststoreFile="C:/Program
Files/Java/jdk1.6.0_04/jre/lib/security/cacerts" />

and add the following in the web.xml


<filter>
<filter-name>CAS Filter</filter-name>
<filter-class>edu.yale.its.tp.cas.client.filter.CASFilter</filter-class>
<init-param>
<param-name>edu.yale.its.tp.cas.client.filter.loginUrl</param-name>
<param-value>https://xxx.com:8443/cas/login</param-value>
</init-param>
<init-param>
<param-name>edu.yale.its.tp.cas.client.filter.validateUrl</param-name>
<param-value>https://xxx.com:8443/cas/serviceValidate</param-value>
</init-param>
<init-param>
<param-name>edu.yale.its.tp.cas.client.filter.serverName</param-name>
<param-value>xxx:8080</param-value>
</init-param>
</filter>

<filter-mapping>
<filter-name>CAS Filter</filter-name>
<url-pattern>/*</url-pattern>
</filter-mapping>




_______________________________________________
cas-dev mailing list
cas-dev@...
http://tp.its.yale.edu/mailman/listinfo/cas-dev