Forum Discussion

xinxinwang's avatar
xinxinwang
15 years ago

SSL Client: bad certificate

I am using soapUI 3.0 on Winsows. I created a self-signed keystore for my JBoss 4.2.3 GA server. I configured both server and the soapUI to enable Client Authentication using the keystore I created. However, when I send a SOAP message to the server, I got this exception on the soapUI:

    Tue Jul 28 10:14:16 EDT 2009:ERROR:javax.net.ssl.SSLHandshakeException: Received fatal alert: bad_certificate

There is no any error or output on the server side.

I used the following command to create my keystore:
     
            keytool -genkey -alias tomcat -keyalg RSA

And configure the server using:


maxThreads="150" scheme="https" secure="true" clientAuth="true" address="${jboss.bind.address}"
keystoreFile=" ${jboss.server.home.dir}/conf/ast.keystore" keystorePass="jasypt_ast"
sslProtocol="TLS">



Thanks for any help.

2 Replies

Sort By
  • genroxbro's avatar
    genroxbro
    New Contributor
    15 years ago
    Ive set up SSL using the self-signed certificate, and everything works great. However, Id like to know if its possible to use a commercial SSL certificate, like youd get from Verisign or Thawte.

    My certificate is in the format of a password-protected PFX file. I also have a key file and a certificate file that Apache uses which are not password protected. I tried exporting a PEM file from the PFX file using OpenSSL, but I get a "server is no longer accepting secure connections" message when trying to connect.

    Any help whatsoever is greatly appreciated
    _____________________________________
    Website I designed for canadian online payday loan company.