Modify Server Not to Expect Client certificate.
修改服务器以使其不需要客户机证书。
Import the client certificate into server trust store.
将客户机证书导入到服务器信任存储区中。
Access the ca public key and test the client certificate.
访问CA的公共密匙并测试客户端证书。
Verify the client certificate is installed in the browser.
验证客户端证书是否已安装到浏览器。
You are using client certificate authentication to the Web server.
您正在对Web服务器使用客户端证书身份验证。
Set SSLPEER on the server to a string that matches the client certificate.
将服务器上的SSLPEER设置为匹配该客户端证书的字符串。
Server trust store should contain the self signed client certificate.
服务器信任存储库应该包含客户端证书自签署。
This security token is the client certificate, in base64 binary-encoded form.
这个安全令牌是一个客户机证书,采用 base64二进制编码形式。
Requesting a client certificate is something that can only be done by the server.
请求客户机证书,只能由服务器完成。
Gets or sets the trusted store location where the client certificate is validated.
获取或设置用来验证客户端证书的受信任存储区位置。
When bind security is enabled, we receive the client certificate from the partner system.
启用绑定安全性后,我们会收到来自伙伴系统的客户端证书。
You should not confuse 'using SSL' with 'using SSL with a predefined client certificate'.
您不应将“使用SSL”与“使用SSL与预定义的客户端证书”混淆。
The CICSB region sends the certificate mentioned in IPCONN definition as the client certificate.
CICSB区域将IPCONN定义中提到的证书作为客户端证书发送出去。
You also must alter its trust store to include only the client certificate that WebSEAL is using.
也必须更改其信任存储库,使之只包含WebSEAL正在使用的客户端证书。
You must configure the application server Web container to perform client certificate authentication.
您必须配置该应用服务器Web容器以执行客户端证书身份验证。
To verify a client certificate, the provider-side handler must have access to the issuers' public key.
要验证客户端证书,提供者一方的处理程序必须访问发行者的公共密匙。
You are using client certificate authentication to the Web server as discussed in the previous section.
像前一小节讨论的一样,使用客户机证书向Web服务器验证身份。
When a certain client certificate was installed on the PC, it could not connect to some SSL servers.
在计算机上安装了客户端证书后,有可能无法连接到某些SSL服务器。
The Web server for Application Server must have the signing certificates for the WebSEAL server's client certificate.
用于ApplicationServer的Web服务器必须有用于WebSEAL 服务器的客户证书的签名证书。
Server-side considerations: We'll be configuring the server to expect a client certificate issued by a trusted CA.
服务器端需要考虑的事项:我们要将服务器配置为需要受信任的 CA颁发的客户机证书。
When using client certificate authentication for Web clients, realize that the Web server is now part of your trust domain.
在对Web客户端使用客户端证书身份验证时,要意识到Web服务器现在是信任域的一部分。
Client Auth Required: if this field is set, then clients connecting through this connector must supply a valid client certificate.
ClientAuth Required:如果设置此字段,那么通过此连接器连接的客户机必须提供有效的客户机证书。
Setting this informs WebSphere Application Server that inbound requests should be authenticated using client certificate authentication.
对此的设置将通知WebSphereApplicationServer应该使用客户端证书身份验证对内部请求进行身份验证。
For the final step, export the client certificate and import that into the server keystore, by first running (entered as a single line).
对于最后一步,导出客户机证书并将其导入到服务器serverkeystore,输入以下命令(以单行形式输入)。
This effectively disables J2EE security context generation, which frees us from having to use a valid user name in the client certificate.
这将有效地禁止生成j2ee安全上下文,从而使我们不必在客户机证书中使用有效的用户名。
The problem is that client certificate must have a private key as well but that private key must be owned only by that single client.
问题是客户端证书必须有一个私钥,但该私钥必须只由该单个客户端拥有。
Select the certificate you have just created for the Default server certificate alias and the Default client certificate alias. Click ok.
对于Defaultservercertificatealias和Defaultclient certificate alias,选择刚才创建的证书。
Because our client certificate will be self-signed, we'll need to configure the client's public key certificate as a trusted signer for the server.
因为我们的客户机证书将是自签署的,所以我们需要将客户机的公钥证书配置为服务器受信任的签署者。
Second, if client certificates are to be used, the DN in the client certificate may have to map to a real user in a user registry used by the server.
第二个问题是,如果使用客户机证书,客户机证书中的DN可能必须映射到服务器使用的用户注册表中的一个真正的用户。
This value is a special name recognized by WSS4J to mean that the client certificate used to sign the request should be used to encrypt the response.
这个值是WSS4J能够识别的特殊名称,这表示应该使用请求签名所用的客户机证书对响应进行加密。
应用推荐