Now I know why I got this error. The application is not taking in account of
the trust/keystores configured in the cxf.xml.
from ssl trace i see
keyStore is :
keyStore type is : jks
keyStore provider is :
init keystore
init keymanager of type SunX509
trustStore is: C:\Program Files\Java\jre6\lib\security\cacerts
trustStore type is : jks
trustStore provider is :
init truststore
while in my cxf.xml I have
<http:conduit name="*.http-conduit">
<http:tlsClientParameters>
<sec:trustManagers>
<sec:keyStore type="JKS" password="password"
file="C:/certs/client-truststire.jks" />
</sec:trustManagers>
<sec:keyManagers keyPassword="password">
<sec:keyStore type="JKS" password="password"
file="C:/certs/client-keystore.jks" />
</sec:keyManagers>
<sec:cipherSuitesFilter>
<sec:include>.*_WITH_3DES_.*</sec:include>
<sec:include>.*_WITH_DES_.*</sec:include>
<sec:exclude>.*_WITH_NULL_.*</sec:exclude>
<sec:exclude>.*_DH_anon_.*</sec:exclude>
</sec:cipherSuitesFilter>
</http:tlsClientParameters>
</http:conduit>
--
View this message in context:
http://cxf.547215.n5.nabble.com/Mutual-authentication-fails-using-cxf-tp5718353p5718381.html
Sent from the cxf-user mailing list archive at Nabble.com.
