Incidentally, could it be because you have it configured as "
"C:/certs/client-truststire.jks" (with an "i") instead of
client-trustst-->o<--re? Hopefully it's as simple as that...
Glen
On 11/14/2012 12:07 PM, becam wrote:
No way to let it work.
I got a strange issue here...
My cxf.xml is correctly configured, but from ssl logs it seems that cxf is
not managing correctly certificates:
after the serverhello no trust certificates are found
***
main, SEND TLSv1 ALERT: fatal, description = certificate_unknown
main, WRITE: TLSv1 Alert, length = 2
main, called closeSocket()
even if at the beginning the trusted certificates are found
***
adding as trusted cert:
Subject: CN=I.T. Telecom Global CA, OU=Servizi di certificazione, O=I.T.
Telecom, C=IT
Issuer: CN=GTE CyberTrust Global Root, OU="GTE CyberTrust Solutions,
Inc.", O=GTE Corporation, C=US
Algorithm: RSA; Serial number: xxxxxx
Valid from Wed Dec 15 21:32:00 CET 2004 until Tue Dec 16 00:59:00 CET 2014
adding as trusted cert:
Subject: CN=GTE CyberTrust Global Root, OU="GTE CyberTrust Solutions,
Inc.", O=GTE Corporation, C=US
Issuer: CN=GTE CyberTrust Global Root, OU="GTE CyberTrust Solutions,
Inc.", O=GTE Corporation, C=US
Algorithm: RSA; Serial number: xxxxxx
Valid from Thu Aug 13 02:29:00 CEST 1998 until Tue Aug 14 01:59:00 CEST
2018
again if i don't include cxf libs in my project and set key/trust store
programatically everything works... maybe tehre is some other aspect of
configuration that I' missing!?!?
--
View this message in context:
http://cxf.547215.n5.nabble.com/Mutual-authentication-fails-using-cxf-tp5718353p5718452.html
Sent from the cxf-user mailing list archive at Nabble.com.
--
Glen Mazza
Talend Community Coders - coders.talend.com
blog: www.jroller.com/gmazza
