2 Replies Latest reply on Jun 22, 2006 2:36 PM by ljnelson

No truststore by default for JBoss?

ljnelson Jun 21, 2006 4:21 PM

Hello; when I boot JBoss with the -Djavax.net.debug=all property, and execute an HTTPS connection from code running under JBoss, my connection attempt fails during the SSL handshake, and the javax.net.debug output tells me that the truststore location is the empty string.

I would have expected that the truststore would have been cacerts by default unless set in some other manner. Is this a bad assumption, or is something else going on?

Thank you,
Laird

1. Re: No truststore by default for JBoss?

awclemen Jun 22, 2006 11:22 AM (in response to ljnelson)

You need to generate a keystore for SSL to work and then modify your server.xml file to tell JBoss/Tomcat where that keystore is.

If you look at chapter 8 of the JBoss Guide (assuming you are using JBoss 4.0) -
http://docs.jboss.org/jbossas/jboss4guide/r4/html/ch8.chapter.html

Toward the end of the chapter (section 8.7) it tells you how to set up a sample keystore and get SSL to start.

Hopefully that will get you started.

--Andy
Actions
2. Re: No truststore by default for JBoss?

ljnelson Jun 22, 2006 2:36 PM (in response to ljnelson)

Hello; thank you for your reply. Of course we aren't doing anything with Tomcat. The chapter you mention talks about setting up a keystore for pushing a certificate out at clients who wish to connect to your secure website; we're having problems pulling a certificate from a secure server to which we're attempting to connect.

Thanks anyway,
Laird
Actions

Go to original post