Skip to main content

URGENT: Self Signed SSL Cert NOT Trusted

2 replies [Last post]
Anonymous

Hi,

I am getting the following error during a WS-Trust operation on GF v2u2:
Peer trust error(s): The X.509 certificate CN=idp.domain0001.com,
OU=Sun Java System Application Server, O=Sun Microsystems, L=Santa
Clara, S=California, C=US is not in the trusted people store.

The certificate that is being used is the self-signed Glass Fish created
certificate.

Do I need a SUN chain certificate here? i.e. there is a .truststore
file do I need to update that somehow?

Looking forward to someones expert insight :-)

--Nikolaos
[att1.html]

Reply viewing options

Select your preferred way to display the comments and click "Save settings" to activate your changes.
V B Kumar Jayanti

Nikolaos Giannopoulos wrote:

> Hi,
>
> I am getting the following error during a WS-Trust operation on GF v2u2:
> Peer trust error(s): The X.509 certificate CN=idp.domain0001.com,
> OU=Sun Java System Application Server, O=Sun Microsystems, L=Santa
> Clara, S=California, C=US is not in the trusted people store.
>
Is there an associated stack-trace. This does not appear to be a
message thrown by WS-Trust impl in GlassFish.

> The certificate that is being used is the self-signed Glass Fish
> created certificate.
>
That cert will automatically be in GlassFish truststore
/domain1/config/cacerts.jks

> Do I need a SUN chain certificate here? i.e. there is a .truststore
> file do I need to update that somehow?
>
Where is this .truststore file located (in your home directory ?). Does
it contain the same self-signed cert ?.

Thanks.

> Looking forward to someones expert insight :-)
>
> --Nikolaos

[att1.html]

Ryan de Laplante

I don't know if this will help you or not, but it shows how to generate
certificates and add them into the trust store:

http://www.ryandelaplante.com/rdelaplante/entry/ssl_and_http_basic_authe...

Ryan

V B Kumar Jayanti wrote:
> Nikolaos Giannopoulos wrote:
>> Hi,
>>
>> I am getting the following error during a WS-Trust operation on GF v2u2:
>> Peer trust error(s): The X.509 certificate CN=idp.domain0001.com,
>> OU=Sun Java System Application Server, O=Sun Microsystems, L=Santa
>> Clara, S=California, C=US is not in the trusted people store.
>>
> Is there an associated stack-trace. This does not appear to be a
> message thrown by WS-Trust impl in GlassFish.
>> The certificate that is being used is the self-signed Glass Fish
>> created certificate.
>>
> That cert will automatically be in GlassFish truststore
> /domain1/config/cacerts.jks
>
>> Do I need a SUN chain certificate here? i.e. there is a .truststore
>> file do I need to update that somehow?
>>
> Where is this .truststore file located (in your home directory ?).
> Does it contain the same self-signed cert ?.
>
> Thanks.
>> Looking forward to someones expert insight :-)
>>
>> --Nikolaos
>

---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@glassfish.dev.java.net
For additional commands, e-mail: users-help@glassfish.dev.java.net