jetty - ssl with parameters NeedClientAuth/WantClientAuth set to true fails with javax.net.ssl.SSLHandshakeException: null cert chain / -


I have the XML file 

  & lt; Call name = "add connector" & gt; Is configured as. ; & Lt; Arg & gt; & Lt; New orbit = "org.mortbay.jetty.security.SslSelectChannelConnector" & gt; & Lt; Set name = "host" & gt; & Lt; SystemProperty default = "0.0.0.0" name = "https.host" & gt; & Lt; / SystemProperty & gt; & Lt; / Set & gt; & Lt; Set name = "port" & gt; & Lt; System Property Default = "0" name = "https.port" & gt; & Lt; / SystemProperty & gt; & Lt; / Set & gt; & Lt; Set name = "max idle time" & gt; 60000 & lt; / Set & gt; & Lt; Set name = "acceptor" & gt; 5 & ​​lt; / Set & gt; & Lt; Set Name = "AcceptQueueSize" & gt; 100 & lt; / Set & gt; & Lt; Set name = "stats" & gt; True & lt; / Set & gt; & Lt; Set name = "keystore" & gt; & Lt; Systemproperty = "." Name = "java.config" & gt; & Lt; / SystemProperty & gt; /mykeystore.keystore< / Set & gt; & Lt; Set Name = "Keyword" & gt; Password & lt; / Set & gt; & Lt; Set name = "password" & gt; Password & lt; / Set & gt; & Lt; Set name = "NeedClientAuth" & gt; True & lt; / Set & gt; & Lt; Set name = "WantClientAuth" & gt; True & lt; / Set & gt; & Lt; / New & gt; & Lt; / Arg> & Lt; / Call & gt;   
 When NeedClientAuth is set to false, I am able to open  
 When TrueClientAuth is set as shown in the above parameters, then this error Fails with  
  259424 2014-04-23 12: 02: 23,881 [825245763 @ qtp-1957835280-3] Warning org.mortbay.log - javax.net .ssl.SSL Handshake Exception: Faucet Proof Series 260138 2014 -04-23 12: 02: 24,521 [825245763 @ qtp-1957835280-3] Warning org.mortbay.log - javax.net.ssl.SSLHandshakeException: Faucet Certificate Series 260689 2014 -04-23 12: 02: 25,072 [825245763 @ Qtp-1957835280-3] Warning org.mortbay.log - javax .net.ssl.SSLProtocolException: Handshake Alert: no_certificate   
 I have added root / intermediate / signed certificate to server keystore; I've also added root / intermediate in the client IE browser  
  The question is, is there any suggestion that any configuration is faulty and to make the keystore properly run and establish a signed certificate from CA   
 
 Made by Keystore, Ytool -keystore serverdns.key Store -alias server -genkey -keyalg RSA -Keekies 2048  
 CSR key toll-creator -LIIS server -Store serverDecision.Castore-file server CSR  
 Signed certificate Letter ketol -import -trustcacerts -alias server -store serverdns.keystore -file signedcert.der.cer    
 
 
 This means that the client was unable to provide reliable certificates by your server's trust store, so the proof Scripture does not send the message. When the client requests the client certificate, it also sends a list of acceptable signatures, and the client can only send the certificate signed by that signer, or with the leading series for such a certificate.  
 This is usually if the customer has a self-signed certificate. In this case, you have to export the client's certificate from your keystore and import it into your server's Truststore.  
  & lt; Set name = "NeedClientAuth" & gt; True & lt; / Set & gt; & Lt; Set name = "WantClientAuth" & gt; True & lt; / Set & gt;   
 It does not make sense to set them both. They are mutually exclusive if you do this, then  NeedClientAuth  probably takes precedence.

Comments

Post a Comment

Popular posts from this blog

Java - Error: no suitable method found for add(int, java.lang.String) -

I'm in the middle of homework work and I'm stuck. At this point in my code, I think that I should have a GUI window that opens and allows me to type "inserted text number". Notice is not going anywhere but at this point, If I pass through the problem then it will be in a linked list. I am getting two of the same error for the lines. Add (index, element); And I can not seem to get past it, there is no suitable method for the error "add (int, java. string string)". Code is below, please advise. To clarify - this will not be a method error because it is a linked list. There should not be any way involved. import java.awt. *; Import java.awt.event. *; Import javax.swing. *; Import java.util. *; Import java.util.Scanner; Import java.util.LinkedList; Public class TopTenList JFrame {Private TopTenList tt; See the Private JTextArea list; Private JTextField cmdTextField; Private JTextField resultsTestfield; // This GUI window is the code for the public toptist...
Read more

java - JPA TypedQuery: Parameter value element did not match expected type -

I am using JPA 2.0 and getting the following code in the DAO layer: Public Zero Test () {string key = "status"; String [] Conditions = {"A", "B"}; & Lt; TestTable & gt; Results = Search (Keys, Conditions); } Public listing & lt; TestTable & gt; Search (string key, object value error) {string sql = "test ndf to testlet and jade nand." + Key + "in:" + key; TypedQuery & LT; TestTable & gt; Query = entityManager.createQuery (SQL, TestTable.class); Query.setParameter (key, Arrays.asList (valueArr)) / *** Error Line *** Return query.getResultList (); } In the above error line, it throws the following exception: java.lang.IllegalArgumentException: parameter value element [[Ljava.lang.String; @ cbe5bc] did not match the expected type [java.lang.String] Why is this expected type string while actually this string []? Please help! Note: This is derived from the normal routine and is a simplified code. I can no...
Read more

c++ - static template member variable has internal linkage but is not defined -

Yes, I know, there is a question with almost the same title, but it refers to a different situation. Error message) In my case, I have a .cpp file with a big named designation name (implementation details). There is a property class template with a static data member in that name space, which I need to access from outside the unknown namespace. I give it a little bit of meat: file.hpp namespace Bar {template & lt; Typename A & gt; Struct foo {static_assert (is_same & lt; a, float & gt; :: value} is_same & lt; a, double>: value, ""); Fixed zero set_static_var (a const & x); // ...}; } and file.cpp namespace {template & lt; Typename A & gt; Struct foo_traits {// supports the implementation of several static code bars: foo & lt; & Gt; Fixed A data; }; The template's & lt; & Gt; Float foo_traits & lt; Float & gt; :: datum; // No change if this is in the global namespace template & lt; & Gt; Doub...
Read more