I have deployed a web application in Glassfish, using Metro 1.5. Most everything is working fine, I believe...I have several services in this application, all of which I can successfully invoke via a client.
Except the one where I've enabled mutual certificate security. I watch a message go up to the service (using tcpmon) and it has all the appropriate WS-Security headers etc. However, when the message is processed, I see the following in the server log:
Could not locate TrustStore, check truststore assertion in WSIT configuration
What is the server looking for, and where is it looking? I have done the procedure to put the V3 certificates on the server. Both cacerts.jks and keystore.jks are right where they should be...in fact, I'm using them in my client-side config and they work just fine.
I've noticed I also get a Fault message back to the client, with a fault code of
wsse:InvalidSecurityToken.
Any help would be much appreciated, I've been working on this for 6+ hours and am at a complete loss.
Thanks.
--Scott
[Message sent by forum member 'scottcame' (scott.came_at_search.org)]
http://forums.java.net/jive/thread.jspa?messageID=361811