I'm getting the dreaded javax.net.ssl.SSLHandshakeException: java.security.cert.CertificateException: No subject alternative DNS name matching bt4ems1uat.clientportal.local found
but the problem is that I added in 'bt4ems1uat.clientportal.local' (with keytool) into the cacarts file as per instructions here: https://wiki.jasig.org/display/CASUM/Demo I had problems, so turned on the debug by: CATALINA_OPTS=$CATALINA_OPTS" -Djavax.net.debug=ssl" in my setenv.bat file. However, the output in the logs isn't too verbose: java.lang.RuntimeException: javax.net.ssl.SSLHandshakeException: java.security.cert.CertificateException: No subject alternative DNS name matching bt4ems1uat.clientportal.local found. at org.jasig.cas.client.validation.Saml11TicketValidator.retrieveResponseFromServer(Saml11TicketValidator.java:231) I ran the list command for keytool and here is a snippet: Alias name: uat Creation date: Apr 16, 2012 Entry type: trustedCertEntry Owner: CN=bt4ems1uat.clientportal.local ... SubjectAlternativeName [ DNSName: bt4ems1uat.clientportal.local ] This all looks OK to me, any suggestions much appreciated, I'm pretty stuck here... Thank you, Mark -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
