I'm trying to set up a test certificate from Verisign to use in JBoss. The whole process of creating a certificate request and importing the response works just fine, but when I start Jboss, I get error messages that I don't understand.
What I'm doing:
First I create a keystore, and generate a certificate request which I copy-paste into the right area in the Verisign site. As first and last name I use ?localhost?:
keytool -genkey -alias test -keyalg RSA -keystore mystore
keytool -certreq -alias test -sigalg MD5withRSA -keystore mystore
Then after a short while, I receive the test certificate in the mail. I store the data in a file called ?verisign.cer? and I import this into the store:
keytool -import -alias verisign -trustcacerts -file verisign.cer -keystore mystore
This works, I can now verify that there are two certificates in the store:
keytool -list -keystore mystore
I configure JBoss to use the store I created and I fill in the password. When I start JBoss everything seems to work, but the certificate that is used is a self-signed certificate.
Therefore, I concluded that apparently JBoss is using the wrong certificate (since there are two in the store) so I proceed and delete the first one:
keytool -delete -alias test -keystore mystore
Then I start JBoss again, but when I do that, it gets stuck in an infinite loop and produces the following error messages:
javax.net.ssl.SSLException: No available certificate corresponds to the SSL cipher suites which are enabled.
at com.sun.net.ssl.internal.ssl.SSLServerSocketImpl.a(DashoA6275)
at com.sun.net.ssl.internal.ssl.SSLServerSocketImpl.accept(DashoA6275)
at org.mortbay.util.ThreadedServer.acceptSocket(ThreadedServer.java:349)
at org.mortbay.util.ThreadedServer$Acceptor.run(ThreadedServer.java:518)
Needless to say it does not work. I don't have a clue what I'm doing wrong however, so any help is more than welcome!