1 Reply Latest reply on Jan 25, 2017 3:34 AM by mchoma

Unable to configure SSL certificate on JBoss 4.3

himansu.padhan Jan 25, 2017 12:50 AM

Hi,

I Have been trying to configure SSL certificate on jBoss 4.3 server. I am getting the below error.

Secure Connection Failed

An error occurred during a connection to xxx.com. Cannot communicate securely with peer: no common encryption algorithm(s). Error code: SSL_ERROR_NO_CYPHER_OVERLAP.

This are below commands I used to generate keystore andimport certificate into the keystore.

1)keytool -genkey -alias jbosskey -keypass <Password> -keyalg RSA -keystore server.keystore

2) keytool -import -alias jbosscert -keypass <password> -file XXX.crt -keystore server.keystore

Server.xml Configuration is as below.

<Connector port="443" address="${jboss.bind.address}"

protocol="HTTP/1.1" SSLEnabled="true" maxHttpHeaderSize="8192"

maxThreads="1000" scheme="https" secure="true" maxSpareThreads="200"

clientAuth="false" sslEnabledProtocols="TLSv1,TLSv1.1,TLSv1.2"

keystore="D:\1.5 jboss\jboss-as\server\XXX\conf\server.jks"

keystorePass="XXXXX" aliasName="jbosscert"

compression="on" connectionTimeout="60000" minSpareThreads="50"

Thanks in Advance.

1. Re: Unable to configure SSL certificate on JBoss 4.3

mchoma Jan 25, 2017 3:34 AM (in response to himansu.padhan)

I suppose Jboss 4.3 have to be run on some old java. And you are testing with some new browser. That would be the problem, that they can't agree on cipher suite to be used.

You can use -Djavax.net.debug=all to see which cipher suites is browser requesting and then try to set these cipher suites on Connector element, if it expose such option (i don't know) - something like sslEnabledCipherSuites.
Actions