
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">

<html>

<body link="#355491" alink="#4262a1" vlink="#355491" style="background: #e2e2e2; margin: 0; padding: 20px;">


<div>

        <table cellpadding="0" bgcolor="#FFFFFF" border="0" cellspacing="0" style="border: 1px solid #dadada; margin-bottom: 30px; width: 100%; -moz-border-radius: 6px; -webkit-border-radius: 6px;">

                <tbody>

                        <tr>


                                <td>


                                        <table border="0" cellpadding="0" cellspacing="0" bgcolor="#FFFFFF" style="border: solid 2px #ccc; background: #dadada; width: 100%; -moz-border-radius: 6px; -webkit-border-radius: 6px;">

                                                <tbody>

                                                        <tr>

                                                                <td bgcolor="#000000" valign="middle" height="58px" style="border-bottom: 1px solid #ccc; padding: 20px; -moz-border-radius-topleft: 3px; -moz-border-radius-topright: 3px; -webkit-border-top-right-radius: 5px; -webkit-border-top-left-radius: 5px;">

                                                                        <h1 style="color: #333333; font: bold 22px Arial, Helvetica, sans-serif; margin: 0; display: block !important;">

                                                                        <!-- To have a header image/logo replace the name below with your img tag -->

                                                                        <!-- Email clients will render the images when the message is read so any image -->

                                                                        <!-- must be made available on a public server, so that all recipients can load the image. -->

                                                                        <a href="https://community.jboss.org/index.jspa" style="text-decoration: none; color: #E1E1E1">JBoss Community</a></h1>

                                                                </td>


                                                        </tr>

                                                        <tr>

                                                                <td bgcolor="#FFFFFF" style="font: normal 12px Arial, Helvetica, sans-serif; color:#333333; padding: 20px;  -moz-border-radius-bottomleft: 4px; -moz-border-radius-bottomright: 4px; -webkit-border-bottom-right-radius: 5px; -webkit-border-bottom-left-radius: 5px;"><h3 style="margin: 10px 0 5px; font-size: 17px; font-weight: normal;">

    Re: Remoting-connector with SSL

</h3>

<span style="margin-bottom: 10px;">

    created by <a href="https://community.jboss.org/people/mrusinak">mrusinak</a> in <i>JBoss AS 7 Development</i> - <a href="https://community.jboss.org/message/738597#738597">View the full discussion</a>

</span>

<hr style="margin: 20px 0; border: none; background-color: #dadada; height: 1px;">


<div class="jive-rendered-content"><p>Hello, I have a followup question. Is there any way to make the client ignore the server's certificate? We want to use SSL for encryption on remote EJB queries, but do not have control over the JVM the client runs to set the JVM level truststore / certificates to trust.</p><p style="min-height: 8pt; height: 8pt; padding: 0px;">&#160;</p><p>Using:</p><pre>remote.connectionprovider.create.options.org.xnio.Options.SSL_ENABLED=true


remote.connections = x1

 
remote.connection.x1.host&#160;&#160;&#160;&#160;&#160;&#160; = 127.0.0.1

remote.connection.x1.port&#160;&#160;&#160;&#160;&#160;&#160; = 9112

remote.connection.x1.username&#160;&#160; = admin

remote.connection.x1.password&#160;&#160; = admin

remote.connection.x1.connect.options.org.xnio.Options.SSL_STARTTLS=true

remote.connection.x1.connect.options.org.xnio.Options.SASL_POLICY_NOANONYMOUS=true

remote.connection.x1.connect.options.org.xnio.Options.SASL_POLICY_NOPLAINTEXT=true

remote.connection.x1.connect.options.org.xnio.Options.SASL_DISALLOWED_MECHANISMS=JBOSS-LOCAL-USER

</pre><p>On running my client (which just tries to initiate a connection), I get an error on client during EJB reciever registration:</p><pre> INFO [main] (EndpointImpl.java:70) - JBoss Remoting version 3.2.3.GA

 ERROR [Remoting "config-based-ejb-client-endpoint" read-1] (RemoteConnection.java:99) - JBREM000200: Remote connection failed: java.io.IOException: JBREM000202: Abrupt close on Remoting connection 76933bcb to computer/127.0.0.1:9112

 WARN [main] (ConfigBasedEJBClientContextSelector.java:133) - Could not register a EJB receiver for connection to remote://127.0.0.1:9112

java.lang.RuntimeException: javax.net.ssl.SSLHandshakeException: General SSLEngine problem

</pre><p style="min-height: 8pt; height: 8pt; padding: 0px;">&#160;</p><p>With this jboss-side error:</p><pre>ERROR [org.jboss.remoting.remote.connection] (Remoting "computer" read-1) JBREM000200: Remote connection failed: javax.net.ssl.SSLException: Fatal Alert received: Certificate Unknown</pre><p style="min-height: 8pt; height: 8pt; padding: 0px;">&#160;</p><p>Thanks for any help!</p></div>


<div style="background-color: #f4f4f4; padding: 10px; margin-top: 20px;">

    <p style="margin: 0;">Reply to this message by <a href="https://community.jboss.org/message/738597#738597">going to Community</a></p>

        <p style="margin: 0;">Start a new discussion in JBoss AS 7 Development at <a href="https://community.jboss.org/choose-container!input.jspa?contentType=1&containerType=14&container=2225">Community</a></p>

</div></td>

                        </tr>

                    </tbody>

                </table>


                </td>

            </tr>

        </tbody>

    </table>


</div>


</body>

</html>