HTTPS 2-way authentication doesn't work.
Luis Muniz
authentication.
I created a client certificate with OpenSSL, and imported it into my
browser.
When I request the page https://localhost:7002/
I get following message in the log:
CertificateVerify.md5 error____________________________
our computed md5 is
0: 6bd8 4b9a 1bb2 7b46 f815 2bdd a8cf de65 k.K...{F..+....e
the actual is
0: 3fcd 6673 4d46 4d45 654c 6bc5 9f01 a2d6 ?.fsMFMEeLk.....
When I turn on -Dssl.debug, then I get a stack trace:
CertificateVerify.md5 error____________________________
our computed md5 is
0: 6bd8 4b9a 1bb2 7b46 f815 2bdd a8cf de65 k.K...{F..+....e
the actual is
0: 3fcd 6673 4d46 4d45 654c 6bc5 9f01 a2d6 ?.fsMFMEeLk.....
weblogic.security.CipherException: Invalid signature
at
weblogic.security.SSL.CertificateVerify.input(CertificateVerify.java:
127)
at weblogic.security.SSL.Handshake.input(Handshake.java:115)
at weblogic.security.SSL.SSLSocket.getHandshake(SSLSocket.java:1043)
at weblogic.security.SSL.SSLSocket.serverInit2(SSLSocket.java:778)
at weblogic.security.SSL.SSLSocket.serverInit(SSLSocket.java:622)
at weblogic.security.SSL.SSLSocket.initialize(SSLSocket.java:267)
at
weblogic.security.SSL.SSLSocket.performAcceptHandshake(SSLSocket.java
:238)
at
weblogic.security.SSL.SSLSocket.getInputStream(SSLSocket.java:1116)
at weblogic.socket.ResettableSocket.<init>(ResettableSocket.java:30)
at weblogic.socket.JVMSocketManager.accept(JVMSocketManager.java:90)
at
weblogic.t3.srvr.ListenThread$RJVMListenRequest.execute(ListenThread.
java:563)
at weblogic.kernel.ExecuteThread.execute(ExecuteThread.java:139)
at weblogic.kernel.ExecuteThread.run(ExecuteThread.java:120)
Any ideas?
Thanks,
Lsui
Geoff Elliott
To set up the debug information do I need to add anything more
than -Dssl.debug (i.e. does it take an "=true" or something like that)?
Thanks,
Geoff.
"Luis Muniz" <luis....@b2boost.com> wrote in message
news:3bd9...@newsgroups.bea.com...