File APIs for Java Developers
Manipulate DOC, XLS, PPT, PDF and many others from your application.
http://aspose.com/file-tools
The moose likes Sockets and Internet Protocols and the fly likes SSL connection - howto disable sending client certificate? Big Moose Saloon
  Search | Java FAQ | Recent Topics | Flagged Topics | Hot Topics | Zero Replies
Register / Login
JavaRanch » Java Forums » Java » Sockets and Internet Protocols
Bookmark "SSL connection - howto disable sending client certificate?" Watch "SSL connection - howto disable sending client certificate?" New topic
Author

SSL connection - howto disable sending client certificate?

Maciej Miklas
Ranch Hand

Joined: Feb 12, 2007
Posts: 61
Hi,

My java client connects to SSL Server. X500 factory accepts all server certificates. There is no keystore - I do not need it.

Now my problem: SSL connection works fine, but my SSL Cleint keeps sending client certificate - I need to disable this.

Can I configure Java in a way, that client certificate is not being send?

This is quiet normal, that clients does not send SSL certificates when connect to the server.....

Thanks,
Maciej
[ June 04, 2008: Message edited by: Maciej Miklas ]
Joanne Neal
Rancher

Joined: Aug 05, 2005
Posts: 3737
    
  16
The client will only send it's certificate if the server has requested it. This is something you need to configure in your server, not Java.


Joanne
Maciej Miklas
Ranch Hand

Joined: Feb 12, 2007
Posts: 61
The request goes trough firewall. The firewall asks always for the certificate. If there is no certificate request goes trough. If there is certificate it will be validated.

I need to configure my java cleint that it does not send the certificate - just to say "there is no certificate"

Such configuration is possible for browser.
Joanne Neal
Rancher

Joined: Aug 05, 2005
Posts: 3737
    
  16
So the firewall is requesting a certificate but is happy to continue if the client doesn't have one, but in your original post you say that the client does have a certificate.
Your server must be requesting a certificate (otherwise the client wouldn't send it), so I don't see what the problem is. You either need to configure your server not to request a certificate or configure it to be happy if no certificate is available (if that is possible).
Jesper de Jong
Java Cowboy
Saloon Keeper

Joined: Aug 16, 2005
Posts: 14338
    
  22

I think this post fits better in the Sockets and Internet Protocols forum instead of the General Computing forum, so I'll move this post over there.


Java Beginners FAQ - JavaRanch SCJP FAQ - The Java Tutorial - Java SE 8 API documentation
 
I agree. Here's the link: http://aspose.com/file-tools
 
subject: SSL connection - howto disable sending client certificate?