Ulf Dittmer wrote:What does that have to do with Tomcat? The user supplies SSL certificates; Tomcat doesn't care whether they're secure or not, it just serves them to the client.
Yes i know that basically handle or taken care at browser side,but for investigation point of view,i just want to know Web server(tomcat) certificate using this SHA-1 or not somewhere in its configuration files?