Which version of Geronimo are you using? You should be able to see what value is set for *javax.net.ssl.trustStore system property through the JVM portlet in Admin Console.
* On Jan 17, 2008 3:12 AM, John Graham <[EMAIL PROTECTED]> wrote: > Hello, > > I'm using a geronimo-based app to connect to an SSL-based LDAP server. > When I initially connected I got an error indicating I needed to add the > server's certficate to Geronimo's keystore. So I used the web interface to > do that, and it added the requisite certificate to a file called > "ssl-keystore-1". When I connected again, after restarting my app, I get the > same "can't find valid certification path to requested target". > > I used the linux 'strace' command to examine the system calls the java > process was making, and found it was *not* opening "ssl-keystore-1", but a > file called "keystore". So I presume this is the heart of the problem. After > googling a bit, I notice there used to be a keystoreLocation parameter for > geronimo, but I don't have the ability to configure that in my deployment. > Likewise, I tried setting JAVA_OPT= *-Djavax.net.ssl.trustStore=<path of > ssl-keystore-1>, and restarted my app. Still the same error, and the java > process was still opening up "keystore". > > Does anyone know how to resolve this problem? > > Thanks, > - J o h n > * >
