--- docs/tomcat-8.0-doc/config/http.html (revision 1669818) +++ docs/tomcat-8.0-doc/config/http.html (working copy) @@ -951,8 +951,12 @@ certificates. If not defined, client certificates will not be checked against a certificate revocation list.
keyAlias
The alias used to for the server certificate in the keystore. If not - specified the first key read in the keystore will be used.
+The alias associated with the server certificate in the keystore. If not + specified the first certificate read will be used. This is not + necessarily the first certificate listed when viewing the keystore, but + the first certificate read.
+Note: If you have more than one certificate in your keystore it is + recommended to specify the keyAlias value.
keyPass
The password used to access the server certificate from the
specified keystore file. The default value is "changeit
".