[jboss-user] [Security & JAAS/JBoss] - Re: Two-way SSL, which certificate does the client send?

fthurber do-not-reply at jboss.com
Fri Apr 10 09:07:14 EDT 2009


My tests seem to indicate that the client java code running in JBoss is not aware of the enclosing JBoss' keystore and truststore.  It is not clear where it is getting a certificate when the server asks for one during two-SSL, but the certificate sent is considered bad.  I would think that it looks in the cacerts or ~/.keystore, but this does not help.

I need to find a way to tell the client code to use the JBoss keystore without changing the code...

View the original post : http://www.jboss.org/index.html?module=bb&op=viewtopic&p=4224886#4224886

Reply to the post : http://www.jboss.org/index.html?module=bb&op=posting&mode=reply&p=4224886



More information about the jboss-user mailing list