Hi Devs,
In WSAS default security policies, we use SKI ( Subject Key
Identifiers ) for referring X509 certificates. But this has a limitation as
this can only be used with X509 version 3 certificates. WSS4J recently
included a check which checks for the version of the certificate when using
SKI. WSAS samples use X509 certificates of version 1, thus will not work
with these default policies which ships with WSAS. I think the best solution
is to change the WSAS default security policies to the Thumbprint SHA
referring mechanism when referring to X509 certificates so these policies
can be used with both versions of X509 certificates.
thanks,
nandana
_______________________________________________
Wsas-java-dev mailing list
[email protected]
http://wso2.org/cgi-bin/mailman/listinfo/wsas-java-dev
