Changing sun-acc.xml to include the ssl element is required only when an appclient is used to invoke an EJB. Since the webtier here is a servlet, it is not required.
Can you pass on the stack traces on the webtier server and the ejb tier sides?
If you are trying mutual authentication, can you please try a one-way ssl connection, by turning <establish-trust-in-client> in the ejb to SUPPORTED? This would help to isolate the problem.
Thanks
Nithya
[Message sent by forum member 'nitkal']
http://forums.java.net/jive/thread.jspa?messageID=486238