[jboss-user] [Security & JAAS/JBoss] - Problems with clientAuth="true"
do-not-reply at jboss.com
Wed Dec 3 10:57:12 EST 2008
1)Setup clientAuth="false" (among the rest Connector data in server.xml), all works fine (Firefox asks for certificate on attempt to open on https://...:8443), opens the page when I import certificate.
2)Change to clientAuth="true"
WORKS FINE FOR THE VERY FIRST TIME (certificate is there form previous test).
When I delete certificate, I get security warning (Secure Connection Failed - as expected).
But when I re-introduce certificate, I got the error message:
An error occurred during a connection to ...:8443.
SSL peer was not expecting a handshake message it received.
(Error code: ssl_error_handshake_unexpected_alert)
This is the very same error message as if I instead of importing certificate just tried to "add exception".
This is tested on FIREFOX 3.0.3.
Under IE 6.0.2... I just get:
quote:Cannot find server or DNS Error
When clientAuth="false" IE work kind of expected way.
After tests I run at work, I have repeated the same process at home, with the same results.
Is this client issue? Or Tomcat/Jboss thing? Any experience with this kind of setup? Any one have it up and running with expected results? Or me doing something wrong here?
View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4194080#4194080
Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=4194080
More information about the jboss-user