|
We changed our web-server software to orion application server. Its a java
web server so we successfully insertied the cert to the keystore but now when
orion is run it says:
"No available certificates correspond to cipher suites enabled". We tried to run a simple java server and made: ...
suites = ((SSLServerSocket)ss).getSupportedCipherSuites(); ((SSLServerSocket)ss).setEnabledCipherSuites(suites);
... The above error disappeared (programming error of the orion team??), but
now an exception is thrown when attempting to connect using SSL:
Runtime Exception: No Cipher Suites in Common
Here is a piece of explanation from JavaSoft FAQ: "Problem: When using Netscape Navigator or Microsoft Internet Explorer (IE) to access files on a server that only has DSA-based certificates, a runtime exception occurs indicating that there are no cipher suites in common. Cause: By default, certificates created with keytool use DSA public keys.
Navigator and IE do not use DSA public keys in their enabled cipher suites.
Solution: To interact with Navigator or IE, you should create certificates
that use RSA-based keys. To do this, you need to specify the -keyalg RSA option
when using keytool."
Does that mean that I have to recreate our certificate?
Thanks in advance,
Egor Savotchkin
.
|
