[jboss-user] [Security & JAAS/JBoss] - Problems with clientAuth="true"

dejanmr do-not-reply at jboss.com
Wed Dec 3 10:57:12 EST 2008

1)Setup clientAuth="false" (among the rest Connector data in server.xml), all works fine (Firefox asks for certificate on attempt to open on https://...:8443), opens the page when I import certificate.

2)Change to clientAuth="true"

WORKS FINE FOR THE VERY FIRST TIME (certificate is there form previous test).
When I delete certificate, I get security warning (Secure Connection Failed - as expected).

But when I re-introduce certificate, I got the error message:

    An error occurred during a connection to ...:8443.
    SSL peer was not expecting a handshake message it received.
    (Error code: ssl_error_handshake_unexpected_alert)

This is the very same error message as if I instead of importing certificate just tried to "add exception".

This is tested on FIREFOX 3.0.3.

Under IE 6.0.2... I just get:

    quote:Cannot find server or DNS Error

When clientAuth="false" IE work kind of expected way.

After tests I run at work, I have repeated the same process at home, with the same results.

Is this client issue? Or Tomcat/Jboss thing? Any experience with this kind of setup? Any one have it up and running with expected results? Or me doing something wrong here?

View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4194080#4194080

Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=4194080

More information about the jboss-user mailing list