I am trying to setup mutual authentication between standalone java class & websphere apps server (6.1).
I have been setting ssl successfully by setting system properties to set the keystore, truststore, & their respective passwords values.
... for all 4 params
This absolutely worked alright till I was using self signed certificate.
As soon as I installed the CA signed certificates. The same client code now throwing error for "bad_certificate" error.
The debug trace shows client code is not sending any certificate on server request. There is only one client & server trust certificate in the clients store. & simillarly at the server end.
After changing the code to use httpsConnection method, I configure key & trust store managers. Here if I assign the value for certificate alias in the keymanager. The code works absolutely fine. The problem is because of the way client code is implemented I wont be able to use httpsConnection package. In order to make this work first. Can somebody please throw some light,
1. How to specifiy the "specific certificate alias" value using System.setProperty in "javax.net.ssl". I didnt find anything there.
2. Why its failing for signed certificate so as I have t add the alias now (not sure if I changed something in the websphere side accidentally).
Thanks in advance
posted 10 years ago
Any takers for this issue ..
In summary .. How can I specify certificate alias (to point to specific certificate in the keystore) using the system property. Something simillar the way we specify the keystore as below