Could you turn logging up to FINE and attach the logging output when processing the request?
Are you sure that the client is sending a certificate as required by the "sp:RequireClientCertificate" policy? Colm. On Tue, Jun 5, 2012 at 9:18 PM, [email protected] <[email protected]>wrote: > The error I am seeing with the latest set up is: > Interceptor for > > {urn:ihe:iti:xdr:2007}DocumentRepositoryXDR_Service#{urn:ihe:iti:xdr:2007}DocumentRepository_ProvideAndRegisterDocumentSet-b > has thrown exception, unwinding now > org.apache.cxf.interceptor.Fault: These policy alternatives can not be > satisfied: > { > http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702}TransportBinding > {http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702}HttpsToken > {http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702}TransportToken > { > http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702}IncludeTimestamp > {http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702}Layout > { > http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702}EndorsingSupportingTokens > {http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702}SamlToken > {http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702}Wss11 > > Thanks for any insight. > > -- > View this message in context: > http://cxf.547215.n5.nabble.com/ws-security-server-tp5709138p5709151.html > Sent from the cxf-dev mailing list archive at Nabble.com. > -- Colm O hEigeartaigh Talend Community Coder http://coders.talend.com
