Re: How to setup SSL in Glassfish 4 for client authentication?
Trevor Holyoak wrote:
> Is this still necessary with Glassfish 4?
Sorry, I can't comment on that particular aspect. I'll see if I can get
the attention of someone from the ws team to answer that.
> Also, this chart seem to imply that SSL shouldn't be on for mutual authentication. Is that correct?
The chart seems odd to me. If we're talking certificate mutual auth,
then SSL is required.
> -----Original Message-----
> From: Ryan Lubke [mailto:ryan.lubke...]
> Sent: Tuesday, June 18, 2013 10:54 AM
> To: email@example.com
> Subject: Re: How to setup SSL in Glassfish 4 for client authentication?
> Does this documentation  help?
>  http://docs.oracle.com/cd/E26576_01/doc.312/e24937/use-cases.htm#gkyba
> - Yes this is for 126.96.36.199, but the steps should be the same.
> Trevor Holyoak wrote:
>> I have created a SOAP web service in Netbeans that I've tested and is working correctly in Glassfish 4 both at port 8080 and at port 8181 with the default SSL configuration that comes with Glassfish 4.
>> The company that will be using the web service has provided me with an SSL certificate that they want me to use to verify them, along with a certificate bundle from GoDaddy.
>> I tried setting this up with the previous version of Glassfish, and wasn't able to make it work. The other company said the connection got terminated during the SSL handshake. Since I don't have access to the client certificate, I'm completely reliant on the client to test it for me, which makes things rather difficult.
>> I've set up regular SSL on web servers before without any trouble, but Glassfish is a different animal (pardon the pun), and I have no prior experience with it, other than playing around with the earlier version off and on over the last month. I'm also coming at Java EE after having certified on Java 2 about a decade ago but not using it since.
>> So, my question is, how do I set this up? I've been looking at the Java EE 7 Tutorial, but it seems to be aimed at self-signed certificates.