Thank you, I have found a exception (on the cas server itself) saying:
javax.net.ssl.SSLHandshakeException:
java.security.cert.CertificateException: No name matching cas.server.com
found
http://pastebin.com/5nJFm6tD
However I did:
- re-created a keystore for the cas.server.com
- even added its cert to the /etc/java-6-sun/security/cacerts
- gave the server cert to the client (it looks working at least the curl
stopped screaming :D)
My keystore:
Keystore type: JKS
Keystore provider: SUN
Your keystore contains 2 entries
cas.server.com, Jul 15, 2011, PrivateKeyEntry,
Certificate fingerprint (MD5):
9C:F8:0E:1C:56:13:7B:CD:39:B6:4B:EE:E2:77:32:03
mail.client.com, Jul 15, 2011, trustedCertEntry,
Certificate fingerprint (MD5):
AD:71:1F:D9:A8:93:7E:45:84:5C:7F:5D:D5:EC:B9:8E
I have no better idea than to double-check all the certificates to see
if I have missed something. Meanwhile if anyone has idea please tell me!
--
Köszönettel:
Hajdú Gyula
IT Konzulens
tel.: +36-30-533-7289
web : www.c3d.hu
--
You are currently subscribed to [email protected] as:
[email protected]
To unsubscribe, change settings or access archives, see
http://www.ja-sig.org/wiki/display/JSG/cas-user
