You are viewing a plain text version of this content. The canonical link for it is here.
Posted to soap-user@ws.apache.org by Robert Dyas <rd...@adelphia.net> on 2001/01/05 03:17:01 UTC
untrusted server cert chain
Hi Everyone!
Does anyone know how to prevent JSSE from throwing a "untrusted server cert
chain" exception when the server's cert isn't from a trusted CA?
It would be really helpful to disable this for testing/development purposes,
but I have no idea how.
Any ideas?
SOAP over SSL
Posted by Robert Dyas <rd...@adelphia.net>.
Thanks a bunch! I followed your suggestion and everything works great!
-----Original Message-----
From: George I Matkovits [mailto:matkovitsg@uswest.net]
Sent: Thursday, January 04, 2001 9:33 PM
To: soap-user@xml.apache.org
Subject: Re: untrusted server cert chain
You must place the server certificate into the clients certificate store.
IMHO
this is documented with JSSE. There is a Java tool to do it with. That is
what I
did on Linux where I run ssl enabled Apache (1st time about 6 months ago)
with a
self generated certificate. I also had to do that on Win2k when I hosted the
java apache client on a Win2k Advanced Server.
Robert Dyas wrote:
> Hi Everyone!
>
> Does anyone know how to prevent JSSE from throwing a "untrusted server
cert
> chain" exception when the server's cert isn't from a trusted CA?
>
> It would be really helpful to disable this for testing/development
purposes,
> but I have no idea how.
>
> Any ideas?
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: soap-user-unsubscribe@xml.apache.org
> For additional commands, email: soap-user-help@xml.apache.org
---------------------------------------------------------------------
To unsubscribe, e-mail: soap-user-unsubscribe@xml.apache.org
For additional commands, email: soap-user-help@xml.apache.org
SOAP over SSL
Posted by Robert Dyas <rd...@adelphia.net>.
Thanks a bunch! I followed your suggestion and everything works great!
-----Original Message-----
From: George I Matkovits [mailto:matkovitsg@uswest.net]
Sent: Thursday, January 04, 2001 9:33 PM
To: soap-user@xml.apache.org
Subject: Re: untrusted server cert chain
You must place the server certificate into the clients certificate store.
IMHO
this is documented with JSSE. There is a Java tool to do it with. That is
what I
did on Linux where I run ssl enabled Apache (1st time about 6 months ago)
with a
self generated certificate. I also had to do that on Win2k when I hosted the
java apache client on a Win2k Advanced Server.
Robert Dyas wrote:
> Hi Everyone!
>
> Does anyone know how to prevent JSSE from throwing a "untrusted server
cert
> chain" exception when the server's cert isn't from a trusted CA?
>
> It would be really helpful to disable this for testing/development
purposes,
> but I have no idea how.
>
> Any ideas?
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: soap-user-unsubscribe@xml.apache.org
> For additional commands, email: soap-user-help@xml.apache.org
---------------------------------------------------------------------
To unsubscribe, e-mail: soap-user-unsubscribe@xml.apache.org
For additional commands, email: soap-user-help@xml.apache.org
Re: untrusted server cert chain
Posted by George I Matkovits <ma...@uswest.net>.
You must place the server certificate into the clients certificate store. IMHO
this is documented with JSSE. There is a Java tool to do it with. That is what I
did on Linux where I run ssl enabled Apache (1st time about 6 months ago) with a
self generated certificate. I also had to do that on Win2k when I hosted the
java apache client on a Win2k Advanced Server.
Robert Dyas wrote:
> Hi Everyone!
>
> Does anyone know how to prevent JSSE from throwing a "untrusted server cert
> chain" exception when the server's cert isn't from a trusted CA?
>
> It would be really helpful to disable this for testing/development purposes,
> but I have no idea how.
>
> Any ideas?
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: soap-user-unsubscribe@xml.apache.org
> For additional commands, email: soap-user-help@xml.apache.org
Re: untrusted server cert chain
Posted by George I Matkovits <ma...@uswest.net>.
You must place the server certificate into the clients certificate store. IMHO
this is documented with JSSE. There is a Java tool to do it with. That is what I
did on Linux where I run ssl enabled Apache (1st time about 6 months ago) with a
self generated certificate. I also had to do that on Win2k when I hosted the
java apache client on a Win2k Advanced Server.
Robert Dyas wrote:
> Hi Everyone!
>
> Does anyone know how to prevent JSSE from throwing a "untrusted server cert
> chain" exception when the server's cert isn't from a trusted CA?
>
> It would be really helpful to disable this for testing/development purposes,
> but I have no idea how.
>
> Any ideas?
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: soap-user-unsubscribe@xml.apache.org
> For additional commands, email: soap-user-help@xml.apache.org