I had the same problem, and apparently, neither Firefox nor IE allow you to see the certificates in your browser if their root CAs are not listed in the truststore file. So, to solve this problem, you need to get all the certificates in the chain until the root certificate from the client side, and add all of them in the truststore.
May I ask you to help by kindly elaborating your answer. I am a newbie on this and I am stuck in my project due to this problem.
By truststoreFile you mean the keystore file?
More specifically what is meant by "you need to get all the certificates in the chain until the root certificate from the client side, and add all of them in the truststore"? can you please provide the steps? I am trying to do this on localhost so my client and server both are the same machine. Also, i am using firefox, so do i have to download the root certificate form firefox and add this to keystore (truststore)? what is a chain? There are simply too many questions and assumptions which are making me a mess, so may i request you to provide the steps or give some pointer?
subject: Problems with clientAuth="true" on Jboss (Tomcat)