On Tuesday 13 December 2005 15:03, Satsangi, Vivek wrote: > C) You can also try to output the full http handshake. Then you will be > able to tell whether it could find the keystore at all, whether the CRL > check failed or the actual certificate getting, etc.
I set the log level to DEBUG for org.apache.commons.httpclient and httpclient.wire. However, I don't believe I saw the handshake occur in the log. The closest thing I see are these entries below. What category should I be adding to see the SSL handshake? [I did this on my linux box since I won't have access to windows until later this evening.] 2005-12-13 17:13:15,537 DEBUG [org.apache.commons.httpclient.HttpClient] SUN 1.42: SUN (DSA key/parameter generation; DSA signing; SHA-1, MD5 digests; SecureRandom; X.509 certificates; JKS keystore; PKIX CertPathValidator; PKIX CertPathBuilder; LDAP, Collection CertStores) 2005-12-13 17:13:15,537 DEBUG [org.apache.commons.httpclient.HttpClient] SunJSSE 1.42: Sun JSSE provider(implements RSA Signatures, PKCS12, SunX509 key/trust factories, SSLv3, TLSv1) 2005-12-13 17:13:15,537 DEBUG [org.apache.commons.httpclient.HttpClient] SunRsaSign 1.42: SUN's provider for RSA signatures 2005-12-13 17:13:15,537 DEBUG [org.apache.commons.httpclient.HttpClient] SunJCE 1.42: SunJCE Provider (implements DES, Triple DES, AES, Blowfish, PBE, Diffie-Hellman, HMAC-MD5, HMAC-SHA1) 2005-12-13 17:13:15,537 DEBUG [org.apache.commons.httpclient.HttpClient] SunJGSS 1.0: Sun (Kerberos v5) --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
