On Wed, 12 Dec 2018 at 16:13, Vavricka <[email protected]> wrote:
> Hi, > > I tried to authenticate via certificate which is signed by my own > certificate authority and only certificate authority public key is present > in broker. > > Steps I have done: > * create certificate authority > * add public CA key to broker truststore (certutil DB in C++ broker) > * sign client private key by CA > * use signed private certificate in client to connect to broker > > When I perform steps above I am able to connect to C++ broker if only > public > CA key is present in broker certificate DB. When I used same steps on Java > Broker I get exception 'javax.net.ssl.SSLException: Received fatal alert: > certificate_unknown'. > > Am I doing something wrong? > > Does Java Broker supports this feature? > > Broker-J supports client authentication using certificates and there are tests for this functionality. What is the configuration you have used for the port/truststore on the (Java) Broker? Have you checked your jks? store to make sure the certificates were imported correctly? -- Rob > qpid-cpp version 1.36.0 > Java Broker version 7.0.4 > > Best Regards, > Tomas > > > > -- > Sent from: > http://qpid.2158936.n2.nabble.com/Apache-Qpid-users-f2158936.html > > --------------------------------------------------------------------- > To unsubscribe, e-mail: [email protected] > For additional commands, e-mail: [email protected] > >
