JS7 JobScheduler

Space shortcuts

Page tree

Versions Compared

Old Version 33

changes.mady.by.user Andreas Püschel

Saved on

compared with

New Version Current

changes.mady.by.user Andreas Püschel

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

  • The following explanations assume CA-signed certificates or self-signed certificates to be usedCertificates being used.
    • Private CA-signed certificates are created by users who operate their own CA, see the JS7 - How to create X.509 SSL TLS Certificates.
    • Public CA-signed Certificates are provided from known and trusted Certificate Authorities (CA) that validate the domain owner.
    • Use of Intermediate CA Certificates is optional.
    • There is no difference in using a Private CA or Public CA concerning functionality of X.509 certificates, usage for Server Authentication / Client Authentication, or security of connections. The only difference is that users trust the Private CA that they set up on their own.
  • Certificate stores can be managed from the command line and using tools that provide a GUI for this purpose:
    • the Java keytool is available from the Java JRE or JDK,
    • the Keystore Explorer, which is an open source utility to graphically manage certificate stores.
  • Starting from Java 9 the PKCS12 keystore type is default and is not required to be specified with keytool.
  • The following sections assume a PKCS12 keystore/truststore format. For Unix OS the .p12 file extension frequently is used, for Windows OS the .pfx extension is preferably used. Both file extensions indicate the same PKCS12 format and can be used interchangeably.

...