Werner - Again thanks for the reply..
The provider as configured in my crypto.properties .. org.apache.ws.security.crypto.provider=org.apache.ws.security.components.crypto.Merlin org.apache.ws.security.crypto.merlin.keystore.type=pkcs12 org.apache.ws.security.crypto.merlin.file=csj.p12 Just to test to make sure I had the password right I used keytool and listed the information in the keystore.. keytool -list -storetype pkcs12 -keystore csj.p12 Enter keystore password: password Keystore type: pkcs12 Keystore provider: SunJSSE Your keystore contains 1 entry csj, Sep 19, 2005, keyEntry, Certificate fingerprint (MD5): CB:E9:4B:C5:2D:1A:58:5B:69:E4:0A:49:4A:E7:7F:90 If I'm not using the right provider what should I be using and how do I set it? Thanks ..Chris On Fri, 16 Sep 2005, Werner Dittmann wrote: > Chris, > > I guess a wrong password or a wrong provider. AFAIK the Sun provider > (security provider) does not support PKCS#12, Bouncycastel does. > > According to the trace you are using the Sun provider... also you > may check the password. > > Regards, > Werner > > csj wrote: > > I'm having problems getting wss4j working with my own keystores, > > everything seems to work with the packaged sample keystore x509.PFX.MSFT > > but when I replace it with my own .p12 file and replace all references to > > the x509.PFX.MSFT with my .p12 in client_deploy.wsdd, crypto.properties, > > and PWCallback.java I get the following.. > > > > java.io.IOException: failed to decrypt safe contents entry: > > javax.crypto.BadPaddingException: Given final block not properly padded > > at > > com.sun.net.ssl.internal.ssl.PKCS12KeyStore.engineLoad(PKCS12KeyStore.java:1275) > > at java.security.KeyStore.load(KeyStore.java:1150) > > > > I have used this same p12 for signing in other applications. > > > > Thanks > > ..Chris > > > > --------------------------------------------------------------------- > > To unsubscribe, e-mail: [EMAIL PROTECTED] > > For additional commands, e-mail: [EMAIL PROTECTED] > > > > > > > --------------------------------------------------------------------- > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > > -- Chris Johnson [EMAIL PROTECTED] --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
