Saturday January 21, 2006

How is SSL in Glassfish
The SSL (Secure Socket Layer) or TLS (Transport Layer Security) configuration is so simple and is readily available on Glassfish appserver.The latest version is TLS1.0 or SSL3.0.

The default server certificate installed and configured when the appserver is installed and domain is created. The default SSL port is 8181 unless changed during the installation. Once the installation is done, https://localhost:8181/ should work.

The SSL implementation in glassfish is JSSE (Java Secure Socket Extension) and certificate database is the java standard JKS format. The server certificate is a self signed RSA algorithm without any extensions. It is very usual that one generate a certificate request and get signed with a well known CA (Certificate Authority) certificate and import back into the certificate store (say keystore).

There is a simple page on commands and ant based targets for listing , generating, importing and exporting of certificates with keytool is available at handling certs.

...more to come... have a nice weekend!
Posted by Jagadesh Babu Munta ( Jan 21 2006, 12:55:13 AM PST ) Permalink Comments [5]