Skip to main content

OSE 3.1.2.2 HTTPS ssl client auth , list of trusted CAs

Please note these java.net forums are being decommissioned and use the new and improved forums at https://community.oracle.com/community/java.
No replies
Bernhard Thalma...
Offline
Joined: 2011-10-10

Hi experts,

looking at the docs and googling around I could not find a description
how to specify which client certs should be trusted during ssl-client auth.

I thought this will work by adding the trusted CA certs into a special
truststore and specfiy this for the 'Trust Store' value within HTTP
listener setting.

However it seems that a custom truststore is not taken into account.

Only If I backup the existing cacerts.jks, replace it by my custom
truststore, the CA list shows up as needed in the 'Certificate Request'
SSL handshake message.

Anyone experienced similar behaviour?

TIA,
Bernhard
--
Painstaking Minds
IT-Consulting Bernhard Thalmayr
Herxheimer Str. 5, 83620 Vagen (Munich area), Germany
Tel: +49 (0)8062 7769174
Mobile: +49 (0)176 55060699

bernhard.thalmayr@painstakingminds.com - Solution Architect
http://www.xing.com/profile/Bernhard_Thalmayr
http://de.linkedin.com/in/bernhardthalmayr

This e-mail may contain confidential and/or privileged information.If
you are not the intended recipient (or have received this email in
error) please notify the sender immediately and delete this e-mail. Any
unauthorized copying, disclosure or distribution of the material in this
e-mail is strictly forbidden.