SSL Handshake Error When Calling F5 Loadbalancer over 2 Way SSL
ray2017 Nov 15, 2017 9:48 AMThe application in Wildfly tries invoking Service in SAG behind a Loadbalancer and it seem the Handshake fails, with client certificate not received from client
Wildfly SSL Configuration is as below
Security Ream
<security-realm name="WebSocketRealm">
<server-identities>
<ssl>
<keystore path="identity.jks" relative-to="jboss.server.config.dir" keystore-password="xxxxx"/>
</ssl>
</server-identities>
<authentication>
<truststore path="truststore.jks" relative-to="jboss.server.config.dir" keystore-password="yyyy"/>
</authentication>
</security-realm>
HTTPS Listener
<https-listener name="https" verify-client="REQUESTED" security-realm="WebSocketRealm" socket-binding="https"/>
Am I missing something.
Error when the external service is invoked by wildfly - The c
TS:[13/11/2017T21:43:21] CID:[1e6210d0-9500-4411-8aa7-0a02be6d6611] default task-53 INFO [stdout] *** ServerHelloDone
TS:[13/11/2017T21:43:21] CID:[1e6210d0-9500-4411-8aa7-0a02be6d6611] default task-53 INFO [stdout] *** Certificate chain
TS:[13/11/2017T21:43:21] CID:[1e6210d0-9500-4411-8aa7-0a02be6d6611] default task-53 INFO [stdout] ***
TS:[13/11/2017T21:43:21] CID:[1e6210d0-9500-4411-8aa7-0a02be6d6611] default task-53 INFO [stdout] *** ClientKeyExchange, DH
.........
TS:[13/11/2017T21:43:21] CID:[1e6210d0-9500-4411-8aa7-0a02be6d6611] default task-53 INFO [stdout] %% Invalidated: [Session-2, TLS_DHE_RSA_WITH_AES_256_GCM_SHA384]
TS:[13/11/2017T21:43:21] CID:[1e6210d0-9500-4411-8aa7-0a02be6d6611] default task-53 INFO [stdout] default task-53, called closeSocket()
TS:[13/11/2017T21:43:21] CID:[1e6210d0-9500-4411-8aa7-0a02be6d6611] default task-53 INFO [stdout] default task-53, handling exception: javax.net.ssl.SSLHandshakeException: Received fatal alert: handshake_failure
TS:[13/11/2017T21:43:21] CID:[1e6210d0-9500-4411-8aa7-0a02be6d6611] default task-53 INFO [stdout] default task-53, called close()
TS:[13/11/2017T21:43:21] CID:[1e6210d0-9500-4411-8aa7-0a02be6d6611] default task-53 INFO [stdout] default task-53, called closeInternal(true