I'm starting to suspect that my replacement certificate for s1as is not adequate. If I leave it, using the tester throws the broswer to ssl, and the browser prompts me to accept the server's certificate. This is part of a solution in that its securing HTTP POST with ssl, but my goal is for the server to disallow unless it trusts the certificate given by the broswer.
[Message sent by forum member 'atappert' (atappert)]
http://forums.java.net/jive/thread.jspa?messageID=220683