on 04-22-2009 4:40 AM
Hi,
I already enable the ssl in my j2ee after refer the guide from sdn. I having a problem for client certificate authentication. I import the private key and the root key to my browser and test the connection. The connection work fine when i use "Request client certificate" but after i change to "Require client certificate" the browser show "SSL peer cannot verify your certificate." error. Any wrong will my client certificate?
Thanks.
Hi,
There could be a problem with your client certificate , this kind of error occurs when the remote system has received a certificate from the local system, and has rejected it for some reason.
Regards
joel
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
solve by reconfigure ssl
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi fcgan,
Please have alook at the following link and see if it helps
The baove link has a section on getting client certificate.
also,
http://www.mozilla.org/projects/security/pki/nss/ref/ssl/sslerr.html
Best Regards
Edited by: Prakash Bhatia on Apr 22, 2009 6:23 AM
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi,
When you choose "Request client cert", authentication with client cert is only
optional. You can successfully get thru maybe in plain HTTP mode, not as you
expected in HTTPS mode; did you see a yellow "lock" icon at lower-right conner
of MSIE browser at that time ?
After you choose "Require client cert", authentication with client cert is
now mandatory. Either SSL config on server side is not yet complete or
you've got an invalid client certificate; the SSL handshaking somehow did
not go thru well.
You may refer to following Microsoft KB articles regarding how SSL client
cert authentication works in Microsoft IIS scenario. The same applies to SAP J2EE.
KB 907274 - IIS and client certificates
http://support.microsoft.com/kb/907274/en-us
KB 285069 - How do I fix the blank certificate list
displayed when I browse to an IIS 5.0 Web site?
http://support.microsoft.com/kb/285069/en-us
HTH,
Ying-Jie Chen
User | Count |
---|---|
79 | |
9 | |
9 | |
7 | |
7 | |
6 | |
6 | |
5 | |
4 | |
4 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.