In my project there is a requirement of LDAP authentication for login module.This is already implemented by one of the developers in our project and also documented the steps for using this Login module.
To use the Login functionality successfully it is mentioned that I have to put cacerts file in tomcat.(This cacerts file is checked in the source repository).
I have no clue how this cacerts file was created .In addition to this ,it is mentioned that if I want to add support for new LDAP server then I need to run InstallCert.java provided on the sun's web site.
As per my understanding the steps followed for creating this cacerts file are :
1.Get the signed certificate (signed by CA) for particular LDAP server from LDAP admin.
2.Import it into the JDK keystore by using InstallCert.java.
Please confirm my understanding.
JDK comes with tool named keytool. Are keytool and InstallCert.java used for the same purpose?