After I created a keystore file, I imported the root certificate from Verisign, the intermediate certificate from Verisign, and the signed Certificate that I purchased from Verisign (in that order).
I edited my server.xml file to include
<Connector port="443"
protocol="HTTP/1.1" SSLEnabled="true"
maxThreads="150" scheme="https" secure="true"
clientAuth="false" sslProtocol="TLS"
keystoreFile="absolute_path_to_servoy_folder\server\conf\servoy.ks" keypass="my_keystore_password" />
I put the keystore file in servoy_folder\server\conf\. I went to the Servoy admin page and added the absolute path to the keystore file and the password and restarted Servoy.
Now, when I go to the web site hosted by Servoy, my browser gives me a warning whenever I try to access an https page. IE7 says "The security certificate presented by this website was not issued by a trusted certificate authority."
If I look at the properties of my certificate, my domain name is listed for both Issued to: and Issued by:.
I'm not testing this on my production server, so I edited my hosts file so that my domain name points to the computer I'm testing this on.
Our hosted solution is used by customers all over the country, and we don't want them to have to tell their browser to trust the certificate. How can I get web browsers to trust my certificate by default?
Servoy Developer
Version 3.5.6-build 519
Java version 1.5.0_14-b03 (Windows XP)