Thank you for the reply I understand the typical use of certificates as I have worked in security for a while, it is a bit complicated to explain and I am not even sure if I am allowed to discuss this so I will avoid talking about the architecture. I appreciate the comments but as I mentioned, our use case is a little different than usual. I am trying to avoid using SSL altogether because of various reasons as well. What I simply want to do is give rampart my X.509 certificate and have it send it to my target where I will try to have rampart do what I want or simply write my own handler to make it do that. I also want rampart to sign that message using my own symmetric key. We have our reasons to use symmetric keys here. If Rampart can't do this, can I write a handler to do this my self and ask rampart to include this into the SOAP message?
From: [email protected] To: [email protected] Subject: RE: Using Rampart to send a proxy certificate and sign using a symmetric key Date: Thu, 14 Mar 2013 06:32:42 -0400 From: [email protected] To: [email protected] Subject: Using Rampart to send a proxy certificate and sign using a symmetric key Date: Thu, 14 Mar 2013 08:59:15 +0000 Hi I have a bit of a unique situation, I am writing an Axis2 client and have to follow a certain procedure. I would like to use Rampart to do the following, 1- I have a proxy certificate issued by a server for me, this certificate has my username and the server's public key, I would like to have rampart to send this certificate. MG>A certificate is generally used by Browsers for verifiying you are who you are and you wish to communicate to server with these specific credentials As far as I know, the samples only show how to have rampart use a certificate from a key store MG>from the trust-store called cacerts is there another way to do it? MG>First step is to get the cert working to validate you to the external interface MG>Second step is to setup a SSLv2 or SSLv3 session (using some known transport) to the server 2- I would like Rampart to sign the request using a Symmetric key. As far as I know, rampart takes the key from a key store but I am not sure how to ask it to sign the request using this key and such The samples didn't help much with this and I am not sure where to find more information Any help is greatly appreciated MG>Read this cover to cover http://download.java.net/jdk8/docs/technotes/guides/security/jsse/JSSERefGuide.html Thanks
