users@glassfish.java.net

Re: Glassfish 3.1.1 https-listener for a cluster not working

From: <forums_at_java.net>
Date: Mon, 9 Jan 2012 14:06:43 -0600 (CST)

Hello Bernhard,

Thanks for the help.

I can't telnet to that port.  When I ran "openssl s_client -connect
hostname:28181", I got the following:

 

CONNECTED(00000003)
depth=0 C = US, ST = California, L = Santa Clara, O = Oracle Corporation, OU
= GlassFish, CN = xxx.yyy.com
verify error:num=18:self signed certificate
verify return:1
depth=0 C = US, ST = California, L = Santa Clara, O = Oracle Corporation, OU
= GlassFish, CN = xxx.yyy.com
verify return:1 
---
Certificate chain
 0 s:/C=US/ST=California/L=Santa Clara/O=Oracle
Corporation/OU=GlassFish/CN=xxx.yyy.com
   i:/C=US/ST=California/L=Santa Clara/O=Oracle
Corporation/OU=GlassFish/CN=xxx.yyy.com
---
Server certificate
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
subject=/C=US/ST=California/L=Santa Clara/O=Oracle
Corporation/OU=GlassFish/CN=xxx.yyy.com
issuer=/C=US/ST=California/L=Santa Clara/O=Oracle
Corporation/OU=GlassFish/CN=xxx.yyy.com
---
No client certificate CA names sent
---
SSL handshake has read 1676 bytes and written 271 bytes
---
New, TLSv1/SSLv3, Cipher is EDH-RSA-DES-CBC3-SHA
Server public key is 2048 bit
Secure Renegotiation IS supported
Compression: NONE
Expansion: NONE
SSL-Session:
    Protocol  : TLSv1
    Cipher    : EDH-RSA-DES-CBC3-SHA
    Session-ID:
4F0B44F9E1F280DD851C942C92914251F26B7DBB2B9E7EF964C9DDDF75D23DFF
    Session-ID-ctx:
    Master-Key:
6F149242508B69C8335ADBCF65EDA82D15EFA3F6E30DDA32E99C40C36F06A621BB5B513D675304F5C12E062061E728D8
    Key-Arg   : None
    Krb5 Principal: None
    PSK identity: None
    PSK identity hint: None
    Start Time: 1326138618
    Timeout   : 300 (sec)
    Verify return code: 18 (self signed certificate)
---
read:errno=0
 
--
[Message sent by forum member 'wlin']
View Post: http://forums.java.net/node/881572
© Oracle | By contributing to this project, you are agreeing to the terms of use described here.