users@glassfish.java.net

Re: URGENT: Self Signed SSL Cert NOT Trusted

From: Ryan de Laplante <ryan_at_ijws.com>
Date: Mon, 30 Jun 2008 03:05:15 -0400

I don't know if this will help you or not, but it shows how to generate
certificates and add them into the trust store:

http://www.ryandelaplante.com/rdelaplante/entry/ssl_and_http_basic_authentication


Ryan


V B Kumar Jayanti wrote:
> Nikolaos Giannopoulos wrote:
>> Hi,
>>
>> I am getting the following error during a WS-Trust operation on GF v2u2:
>> Peer trust error(s): The X.509 certificate CN=idp.domain0001.com,
>> OU=Sun Java System Application Server, O=Sun Microsystems, L=Santa
>> Clara, S=California, C=US is not in the trusted people store.
>>
> Is there an associated stack-trace. This does not appear to be a
> message thrown by WS-Trust impl in GlassFish.
>> The certificate that is being used is the self-signed Glass Fish
>> created certificate.
>>
> That cert will automatically be in GlassFish truststore
> <domains>/domain1/config/cacerts.jks
>
>> Do I need a SUN chain certificate here? i.e. there is a .truststore
>> file do I need to update that somehow?
>>
> Where is this .truststore file located (in your home directory ?).
> Does it contain the same self-signed cert ?.
>
> Thanks.
>> Looking forward to someones expert insight :-)
>>
>> --Nikolaos
>