X509.ObjectIdentifier() -- data isn't an object ID (tag = 49) error + SSL

[Babu J <ba...@rsi.ramco.com>]

Hi

 Iam try  to run the webservice using x509 certificate validation, I got following error,

Unable to create an X509 certificate factory: D:\keystores\request.arm: java.security.cert.CertificateParsingException: java.io.IOException: X509.ObjectIdentifier() -- data isn't an object ID (tag = 49).

I found the Reason for the error, but How can i solve that problem. The reason was

Java keystore is not able to handle 4096bit RSA keys.

Please help me to solve this problem  .

Tools used:

Websphere Studio 5.2.1

Regards

Babu J

-----Original Message-----
From: VascoAce@aol.com [mailto:VascoAce@aol.com]
Sent: Friday, April 21, 2006 5:20 PM
To: wss4j-dev@ws.apache.org
Subject: WSS4J with Tomcat + SSL




Token encription is working fine in my developement Tomcat server without SSL. The use of the private key and public key to encript the token is working fine. When I deploy the same application  in Tomcat with SSL (the use of SSL is a requirement)  I'm having problems with the key used for the encription (wrong key  specified). I'm using the same private key to activate SSL but the problems continue. I don't need to sign the whole soap mesage but just the token. Is it possible to use WSS4J inside a Tomcat server using SSL? A possible solution would be to create a new instance of Tomcat without SSL for all my web services  in the same server running the main web application with Tomcat + SSL but I would like to find out if there is a solution to my problem before I proceed.

Thanks in advance for any replies,

Alberto



DISCLAIMER:

Information transmitted by this e-mail may be proprietary to Ramco Systems Ltd., and / or the authors of the information and is intended for use only by the individual or entity to which it is addressed, and may contain confidential or legally privileged information. If you are not the intended recipient or it appears that this mail has been forwarded to you without proper authority, you are not authorised to access, read, disclose, copy, use or otherwise deal with it and any such actions are prohibited and may be unlawful.

Internet communications cannot be guaranteed to be secure or error-free as information could be intercepted, corrupted, lost, arrive late or contain viruses. Ramco Systems Limited therefore does not accept liability for any errors, omissions, viruses or computer problems experienced as a result of this transmission.

If you have received this e-mail in error, please notify us immediately at mail to: mailadmin@rsi.ramco.com and delete this mail from your records. Notice is hereby given that no representation, contract or other binding obligation shall be created by this e-mail.