This method is perfectly safe. As was just described, by default your
domain is configured to use a self-signed certificate. Because it is
self-signed, your browser does not trust it by default (it wasn't signed
by a CA it trusts) and so you get the browser prompting you. You can
safely proceed if you trust the self-signed certificate (which presumably
you do). If you want to avoid getting prompted, you can import the
certificate into your browser's trust store so that it now trusts the
signer of the certificate.
And like was just described, you can get a certificate from a trusted CA
and configure GlassFish to use it instead, and then you also won't be
prompted when opening the admin console.
NextGate
Kevin Schmidt ■ Director, Product Management & Marketing
p: +1-626-400-6008 ■ m: +1-425-390-4786 ■ nextgate.com
<
http://www.nextgate.com>
Registry solutions for efficient health information exchange
IMPORTANT WARNING: This email (and any attachments) is only intended for
the use of the person or entity to which it is addressed, and may contain
information that is privileged and confidential. You, the recipient, are
obligated to maintain it in a safe, secure and confidential manner.
Unauthorized re-disclosure or failure to maintain confidentiality may
subject you to federal and state penalties. If you are not the intended
recipient, please immediately notify us by return email, and delete this
message from your computer.
On 9/7/12 7:23 AM, "forums_at_java.net" <forums_at_java.net> wrote:
>You have changed what you are saying is not a safe method. First you said
>restarting the server was not a safe method. That is what I asked about
>earlier. Now you are talking about the self-signed certificate. As
>documented, GlassFish uses a self-signed certificate that is generated
>when
>you create a GlassFish domain (or when you use the pre-defined domain
>that is
>part of the installation when you unzip the distribution). Browsers notify
>the user if a site uses a self-signed certificate because the cert is not
>issued by a trusted cert authority. To avoid these warnings you can obtain
>your own certificate from a trusted authority and have GlassFish use it
>instead of the self-signed one.
>
>--
>
>[Message sent by forum member 'tjquinn']
>
>View Post: http://forums.java.net/node/889882
>
>