[jboss-user] [Security & JAAS/JBoss] - untrusted server cert chain - Please Help!

[sonoerin]

Not sure if this is the correct forum, but I really need some help with this and it seemed logical.

I have an existing application running on JBoss (not sure what version, but I am guessing 3.x) that connects to a third party server via SSL.  The third party certificate recently expired.  They updated it but I still get this message:

javax.net.ssl.SSLException: untrusted server cert chain
at com.sun.net.ssl.internal.ssl.SSLSocketImpl.a(DashoA6275)
at com.sun.net.ssl.internal.ssl.ClientHandshaker.a(DashoA6275)
at com.sun.net.ssl.internal.ssl.ClientHandshaker.processMessage(DashoA6275)
at com.sun.net.ssl.internal.ssl.Handshaker.process_record(DashoA6275)
at com.sun.net.ssl.internal.ssl.SSLSocketImpl.a(DashoA6275)
at com.sun.net.ssl.internal.ssl.SSLSocketImpl.a(DashoA6275)
at com.sun.net.ssl.internal.ssl.AppOutputStream.write(DashoA6275)
at java.io.OutputStream.write(OutputStream.java:56)
at com.sun.net.ssl.internal.ssl.SSLSocketImpl.startHandshake(DashoA6275)

I am just not sure what I am supposed to do so that my application can use the new application.

->  Do I need a copy of the vendors certificate stored locally?
->  Do I need to use the keytool to establish a link?  
-> I saw directions on the wiki for creating a SSL certificate, but it didn't seem to apply here (granted, I have no idea what I am doing here!)

Again, I really need help with this - its a brand new area for me.


View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=3991175#3991175

Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=3991175