This means that the actual URL what it was trying to access (km.dev.wso2.org <http://km.dev.wso2.org>) presented a certificate with the CN gw.dev.wso2.org. <http://gw.dev.wso2.org> The server at the host km.dev.wso2.com should have a public certificate with the same hostname as CN. And since you seem to have a common domain dev.wso2.org, you can generate a SSL key pair with a wildcard - *. dev.wso2.org. No need to generate separately for each instance. <http://gw.dev.wso2.org>
On Tue, Nov 28, 2017 at 11:21 AM, Nuwan Silva <[email protected]> wrote: > Hi Team, > > I'm getting the above issue when trying to login to publisher. I have > added the certificates of all the instances of the deployment to a single > client-truststore and copied to all servers. > > checking via > keytool -list -v -keystore client-truststore.jks > > does show the certificates. What can be the cause of this? > > TID: [-1234] [] [2017-11-28 05:43:47,637] INFO {org.wso2.carbon.core. > internal.permission.update.PermissionUpdater} - Permission cache updated > for tenant -1234 {org.wso2.carbon.core.internal.permission.update. > PermissionUpdater} > TID: [-1234] [] [2017-11-28 05:43:48,009] INFO > {org.apache.axis2.transport.http.HTTPSender} - Unable to sendViaPost to > url[https://km.dev.wso2.org:443/services/AuthenticationAdmin] > {org.apache.axis2.transport.http.HTTPSender} > javax.net.ssl.SSLException: hostname in certificate didn't match: < > km.dev.wso2.org> != <gw.dev.wso2.org> > at org.apache.commons.httpclient.protocol.SSLProtocolSocketFactory. > verifyHostName(SSLProtocolSocketFactory.java:436) > at org.apache.commons.httpclient.protocol.SSLProtocolSocketFactory. > verifyHostName(SSLProtocolSocketFactory.java:302) > at org.apache.commons.httpclient.protocol.SSLProtocolSocketFactory. > verifyHostName(SSLProtocolSocketFactory.java:273) > at org.apache.commons.httpclient.protocol.SSLProtocolSocketFactory. > createSocket(SSLProtocolSocketFactory.java:183) > at org.apache.commons.httpclient.HttpConnection.open( > HttpConnection.java:707) > at org.apache.commons.httpclient.MultiThreadedHttpConnectionMan > ager$HttpConnectionAdapter.open(MultiThreadedHttpConnectionMan > ager.java:1361) > at org.apache.commons.httpclient.HttpMethodDirector.executeWithRetry( > HttpMethodDirector.java:387) > at org.apache.commons.httpclient.HttpMethodDirector.executeMethod( > HttpMethodDirector.java:171) > at org.apache.commons.httpclient.HttpClient.executeMethod( > HttpClient.java:397) > at org.apache.axis2.transport.http.AbstractHTTPSender.executeMethod( > AbstractHTTPSender.java:682) > at org.apache.axis2.transport.http.HTTPSender.sendViaPost( > HTTPSender.java:195) > at org.apache.axis2.transport.http.HTTPSender.send(HTTPSender.java:77) > at org.apache.axis2.transport.http.CommonsHTTPTransportSender. > writeMessageWithCommons(CommonsHTTPTransportSender.java:451) > at org.apache.axis2.transport.http.CommonsHTTPTransportSender.invoke( > CommonsHTTPTransportSender.java:278) > at org.apache.axis2.engine.AxisEngine.send(AxisEngine.java:442) > at org.apache.axis2.description.OutInAxisOperationClient.send( > OutInAxisOperation.java:430) > at org.apache.axis2.description.OutInAxisOperationClient.executeImpl( > OutInAxisOperation.java:225) > at org.apache.axis2.client.OperationClient.execute( > OperationClient.java:149) > at org.wso2.carbon.authenticator.stub.AuthenticationAdminStub. > login(AuthenticationAdminStub.java:659) > at org.wso2.carbon.apimgt.hostobjects.APIProviderHostObject. > jsFunction_login(APIProviderHostObject.java:267) > at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) > at sun.reflect.NativeMethodAccessorImpl.invoke( > NativeMethodAccessorImpl.java:62) > at sun.reflect.DelegatingMethodAccessorImpl.invoke( > DelegatingMethodAccessorImpl.java:43) > at java.lang.reflect.Method.invoke(Method.java:498) > at org.mozilla.javascript.MemberBox.invoke(MemberBox.java:126) > at org.mozilla.javascript.FunctionObject.call(FunctionObject.java:386) > at org.mozilla.javascript.optimizer.OptRuntime.call2( > OptRuntime.java:42) > at org.jaggeryjs.rhino.publisher.modules.user.c1._c_anonymous_ > 1(/publisher/modules/user/login.jag:19) > at org.jaggeryjs.rhino.publisher.modules.user.c1.call(/ > publisher/modules/user/login.jag) > at org.mozilla.javascript.ScriptRuntime.applyOrCall( > ScriptRuntime.java:2430) > at org.mozilla.javascript.BaseFunction.execIdCall( > BaseFunction.java:269) > at org.mozilla.javascript.IdFunctionObject.call( > IdFunctionObject.java:97) > at org.mozilla.javascript.optimizer.OptRuntime.call2( > OptRuntime.java:42) > at org.jaggeryjs.rhino.publisher.modules.user.c0._c_anonymous_ > 1(/publisher/modules/user/module.jag:5) > at org.jaggeryjs.rhino.publisher.modules.user.c0.call(/ > publisher/modules/user/module.jag) > at org.mozilla.javascript.optimizer.OptRuntime.callN( > OptRuntime.java:52) > at org.jaggeryjs.rhino.publisher.site.blocks.user.login.ajax. > c0._c_anonymous_1(/publisher/site/blocks/user/login/ajax/login.jag:26) > at org.jaggeryjs.rhino.publisher.site.blocks.user.login.ajax. > c0.call(/publisher/site/blocks/user/login/ajax/login.jag) > at org.mozilla.javascript.optimizer.OptRuntime.call0( > OptRuntime.java:23) > at org.jaggeryjs.rhino.publisher.site.blocks.user.login.ajax. > c0._c_script_0(/publisher/site/blocks/user/login/ajax/login.jag:5) > at org.jaggeryjs.rhino.publisher.site.blocks.user.login.ajax. > c0.call(/publisher/site/blocks/user/login/ajax/login.jag) > at org.mozilla.javascript.ContextFactory.doTopCall( > ContextFactory.java:394) > at org.mozilla.javascript.ScriptRuntime.doTopCall( > ScriptRuntime.java:3091) > at org.jaggeryjs.rhino.publisher.site.blocks.user.login.ajax. > c0.call(/publisher/site/blocks/user/login/ajax/login.jag) > at org.jaggeryjs.rhino.publisher.site.blocks.user.login.ajax. > c0.exec(/publisher/site/blocks/user/login/ajax/login.jag) > at org.jaggeryjs.scriptengine.engine.RhinoEngine.execScript( > RhinoEngine.java:567) > at org.jaggeryjs.scriptengine.engine.RhinoEngine.exec( > RhinoEngine.java:273) > at org.jaggeryjs.jaggery.core.manager.WebAppManager.exec( > WebAppManager.java:588) > at org.jaggeryjs.jaggery.core.manager.WebAppManager.execute( > WebAppManager.java:508) > at org.jaggeryjs.jaggery.core.JaggeryServlet.doPost( > JaggeryServlet.java:29) > at javax.servlet.http.HttpServlet.service(HttpServlet.java:650) > at javax.servlet.http.HttpServlet.service(HttpServlet.java:731) > at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter( > ApplicationFilterChain.java:303) > at org.apache.catalina.core.ApplicationFilterChain.doFilter( > ApplicationFilterChain.java:208) > at org.apache.catalina.core.ApplicationDispatcher.invoke( > ApplicationDispatcher.java:743) > at org.apache.catalina.core.ApplicationDispatcher.processRequest( > ApplicationDispatcher.java:485) > at org.apache.catalina.core.ApplicationDispatcher.doForward( > ApplicationDispatcher.java:377) > at org.apache.catalina.core.ApplicationDispatcher.forward( > ApplicationDispatcher.java:337) > at org.jaggeryjs.jaggery.core.JaggeryFilter.doFilter( > JaggeryFilter.java:21) > at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter( > ApplicationFilterChain.java:241) > at org.apache.catalina.core.ApplicationFilterChain.doFilter( > ApplicationFilterChain.java:208) > at org.wso2.carbon.ui.filters.cache.ContentTypeBasedCachePreventio > nFilter.doFilter(ContentTypeBasedCachePreventionFilter.java:53) > at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter( > ApplicationFilterChain.java:241) > at org.apache.catalina.core.ApplicationFilterChain.doFilter( > ApplicationFilterChain.java:208) > at org.apache.catalina.filters.HttpHeaderSecurityFilter.doFilter( > HttpHeaderSecurityFilter.java:124) > at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter( > ApplicationFilterChain.java:241) > at org.apache.catalina.core.ApplicationFilterChain.doFilter( > ApplicationFilterChain.java:208) > at org.apache.catalina.core.StandardWrapperValve.invoke( > StandardWrapperValve.java:219) > at org.apache.catalina.core.StandardContextValve.invoke( > StandardContextValve.java:110) > at org.apache.catalina.authenticator.AuthenticatorBase.invoke( > AuthenticatorBase.java:506) > at org.apache.catalina.core.StandardHostValve.invoke( > StandardHostValve.java:169) > at org.apache.catalina.valves.ErrorReportValve.invoke( > ErrorReportValve.java:103) > at org.wso2.carbon.tomcat.ext.valves.CompositeValve. > continueInvocation(CompositeValve.java:99) > at org.wso2.carbon.tomcat.ext.valves.CarbonTomcatValve$1. > invoke(CarbonTomcatValve.java:47) > at org.wso2.carbon.webapp.mgt.TenantLazyLoaderValve.invoke( > TenantLazyLoaderValve.java:57) > at org.wso2.carbon.tomcat.ext.valves.TomcatValveContainer. > invokeValves(TomcatValveContainer.java:47) > at org.wso2.carbon.tomcat.ext.valves.CompositeValve.invoke( > CompositeValve.java:62) > at org.wso2.carbon.tomcat.ext.valves.CarbonStuckThreadDetectionValv > e.invoke(CarbonStuckThreadDetectionValve.java:159) > at org.apache.catalina.valves.AccessLogValve.invoke( > AccessLogValve.java:962) > at org.wso2.carbon.tomcat.ext.valves.CarbonContextCreatorValve.invoke( > CarbonContextCreatorValve.java:57) > at org.apache.catalina.core.StandardEngineValve.invoke( > StandardEngineValve.java:116) > at org.apache.catalina.connector.CoyoteAdapter.service( > CoyoteAdapter.java:445) > at org.apache.coyote.http11.AbstractHttp11Processor.process( > AbstractHttp11Processor.java:1115) > at org.apache.coyote.AbstractProtocol$AbstractConnectionHandler. > process(AbstractProtocol.java:637) > at org.apache.tomcat.util.net.NioEndpoint$SocketProcessor. > doRun(NioEndpoint.java:1775) > at org.apache.tomcat.util.net.NioEndpoint$SocketProcessor. > run(NioEndpoint.java:1734) > at java.util.concurrent.ThreadPoolExecutor.runWorker( > ThreadPoolExecutor.java:1142) > at java.util.concurrent.ThreadPoolExecutor$Worker.run( > ThreadPoolExecutor.java:617) > at org.apache.tomcat.util.threads.TaskThread$WrappingRunnable.run( > TaskThread.java:61) > > > -- > > > *Nuwan Silva* > *Associate Technical Lead* > Mobile: +9477 980 4543 <077%20980%204543> > > WSO2 Inc. > lean . enterprise . middleware. > http://www.wso2.com > -- Thanks and Regards, Isuru H. +94 716 358 048* <http://wso2.com/>*
_______________________________________________ Dev mailing list [email protected] http://wso2.org/cgi-bin/mailman/listinfo/dev
