The error in your attached log
javax.net.ssl.SSLHandshakeException: com.ibm.jsse2.util.h: PKIX path
building failed: java.security.cert.CertPathBuilderException: unable
to find valid certification path to requested target
com.ibm.jsse2.n.a(n.java:3)
is almost always caused SSL trust problems in the CAS client where the
client does not trust the certificate/chain presented by the CAS
server. I am totally unfamiliar with the IBM JRE, but hopefully you
can translate the instructions for the Sun JRE into your environment.
Import the CAS server cert (or issuer cert if you have a PKI) into the
truststore used by JRE of the CAS client; the default system
truststore is $JAVA_HOME/jre/lib/security/cacerts. We use keytool,
http://java.sun.com/j2se/1.5.0/docs/tooldocs/solaris/keytool.html, for
keystore management, but there are GUI tools avalilable (e.g.
http://portecle.sourceforge.net/) if you would prefer a graphical
tool.
M
--
You are currently subscribed to [email protected] as:
[email protected]
To unsubscribe, change settings or access archives, see
http://www.ja-sig.org/wiki/display/JSG/cas-user
