cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

SSL in j2ee

Go to solution
former_member568822
Active Participant

on ‎04-22-2009 4:40 AM

0 Kudos

Hi,

I already enable the ssl in my j2ee after refer the guide from sdn. I having a problem for client certificate authentication. I import the private key and the root key to my browser and test the connection. The connection work fine when i use "Request client certificate" but after i change to "Require client certificate" the browser show "SSL peer cannot verify your certificate." error. Any wrong will my client certificate?

Thanks.

Show replies
Show replies
Answer

Accepted Solutions (1)

Accepted Solutions (1)

JoelTrinidade
Active Contributor
‎04-22-2009 5:30 AM
0 Kudos

Hi,

There could be a problem with your client certificate , this kind of error occurs when the remote system has received a certificate from the local system, and has rejected it for some reason.

Regards

joel

Show replies
Show replies

Answers (2)

Answers (2)

former_member568822
Active Participant
‎05-02-2009 5:27 PM
0 Kudos

solve by reconfigure ssl

Show replies
Show replies
former_member732072
Active Participant
‎04-22-2009 5:19 AM
0 Kudos

Hi fcgan,

Please have alook at the following link and see if it helps

https://www.sdn.sap.com/irj/scn/go/portal/prtroot/docs/library/uuid/d0efc296-c73e-2b10-3792-91be91e6...

The baove link has a section on getting client certificate.

also,

http://www.mozilla.org/projects/security/pki/nss/ref/ssl/sslerr.html

Best Regards

Edited by: Prakash Bhatia on Apr 22, 2009 6:23 AM

Show replies
Show replies
former_member568822
Active Participant
‎04-22-2009 5:26 AM
0 Kudos

Hi,

thanks for reply. It seem like the certificate been rejected by sever but i still not idea why its been rejected? It that because of Java Unlimited Strength Jurisdiction Policy Files?

thanks

JoelTrinidade
Active Contributor
‎04-22-2009 5:34 AM
0 Kudos

Hi,

In your Manage Certificates view, make sure that both the Entrust Root CA and the Entrust SSL renewal certificate are both trusted. Once they are set to be trusted, please stop and start services and the problem will resolve.

Regards

joel

Former Member
‎04-22-2009 4:20 PM
0 Kudos

Hi,

When you choose "Request client cert", authentication with client cert is only

optional. You can successfully get thru maybe in plain HTTP mode, not as you

expected in HTTPS mode; did you see a yellow "lock" icon at lower-right conner

of MSIE browser at that time ?

After you choose "Require client cert", authentication with client cert is

now mandatory. Either SSL config on server side is not yet complete or

you've got an invalid client certificate; the SSL handshaking somehow did

not go thru well.

You may refer to following Microsoft KB articles regarding how SSL client

cert authentication works in Microsoft IIS scenario. The same applies to SAP J2EE.

  • KB 907274 - IIS and client certificates

http://support.microsoft.com/kb/907274/en-us

  • KB 285069 - How do I fix the blank certificate list

displayed when I browse to an IIS 5.0 Web site?

http://support.microsoft.com/kb/285069/en-us

HTH,

Ying-Jie Chen

Ask a Question