ASG
IBM
Zystems
Cressida
Icon
Netflexity
 
  MQSeries.net
Search  Search       Tech Exchange      Education      Certifications      Library      Info Center      SupportPacs      LinkedIn  Search  Search                                                                   FAQ  FAQ   Usergroups  Usergroups
 
Register  ::  Log in Log in to check your private messages
 
RSS Feed - WebSphere MQ Support RSS Feed - Message Broker Support

MQSeries.net Forum Index » WebSphere Message Broker (ACE) Support » SSL Client Authentication errors

Post new topic  Reply to topic
 SSL Client Authentication errors « View previous topic :: View next topic » 
Author Message
wbintegrator
PostPosted: Thu Dec 10, 2009 6:00 am    Post subject: SSL Client Authentication errors Reply with quote

Voyager

Joined: 08 Feb 2006
Posts: 83
Hey,
For several days now i have been trying to access a web service deployed on Message Broker 6.1 with enabled SSL Client Authentication.
My problem arrises when i try to use certficates signed by a CA. When i use self-signed certificates everything works fine.
I have added the CAs certifcate to the keystore the broker is using and even the certificate the client sends itself. Still i keep getting a Certificate Unknown error when i try to access the web service through a C#.Net application i have written for testing.
I have enabled the ssl log of the .Net application and i can see that the application is sending the right certificate.
I have been trying to find a way to access some kind of a ssl log on the Message Broker but i just can not find a way to do that.
Is there a way i can understand why the Broker is not accepting the clients certificate?

Any help would be appreciated,
Netanel.
Back to top
View user's profile Send private message
rajparekh08
PostPosted: Sun Dec 13, 2009 9:43 pm    Post subject: Reply with quote

Acolyte

Joined: 21 Sep 2009
Posts: 58
Location: India- Bagalore
HI,
MB logs will not store anything, till the "SSL" handshake is done. So dont look there.
Where have you stored the client ??
And where have you stored the server certificate??

The client certificate will go to the "cacerts" keystore of Broker.
and for server cert., you will have to create a keystore and import the certificate there, and assign is as the trust store.
So when you hit on the link, then the certificate presented by the server will be cross checked with the trust store.
Hope this helps,
I am doing something similare, Let me knw it this works, maybe I will need ur help.
aslo you may wanna go through this:
http://www-01.ibm.com/support/docview.wss?uid=swg27012172&aid=1

Thnx
Raj
Back to top
View user's profile Send private message Send e-mail Yahoo Messenger
Display posts from previous:   
Post new topic  Reply to topic Page 1 of 1

MQSeries.net Forum Index » WebSphere Message Broker (ACE) Support » SSL Client Authentication errors
Jump to:  



You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
Protected by Anti-Spam ACP
  
 


Theme by Dustin Baccetti
Powered by phpBB © 2001, 2002 phpBB Group

Copyright © MQSeries.net. All rights reserved.