1 Reply Latest reply on Jan 25, 2017 3:34 AM by Martin Choma

    Unable to configure SSL certificate on JBoss 4.3

    Himansu Padhan Newbie

      Hi,

       

      I Have been trying to configure SSL certificate on jBoss 4.3 server. I am getting the below error.

       

      Secure Connection Failed

      An error occurred during a connection to xxx.com. Cannot communicate securely with peer: no common encryption algorithm(s). Error code: SSL_ERROR_NO_CYPHER_OVERLAP.

       

      This are below commands I used to generate keystore andimport certificate into the keystore.

       

      1)keytool -genkey -alias jbosskey -keypass <Password> -keyalg RSA -keystore server.keystore

       

      2) keytool -import -alias jbosscert -keypass <password> -file XXX.crt -keystore server.keystore

       

      Server.xml Configuration is as below.

       

      <Connector port="443" address="${jboss.bind.address}"

                     protocol="HTTP/1.1" SSLEnabled="true" maxHttpHeaderSize="8192"

                     maxThreads="1000" scheme="https" secure="true" maxSpareThreads="200"

                     clientAuth="false" sslEnabledProtocols="TLSv1,TLSv1.1,TLSv1.2"

                     keystore="D:\1.5 jboss\jboss-as\server\XXX\conf\server.jks"

                     keystorePass="XXXXX" aliasName="jbosscert"

                     compression="on" connectionTimeout="60000" minSpareThreads="50"

          />

       

       

      Thanks in Advance.

        • 1. Re: Unable to configure SSL certificate on JBoss 4.3
          Martin Choma Expert

          I suppose Jboss 4.3 have to be run on some old java. And you are testing with some new browser. That would be the problem, that they can't agree on cipher suite to be used.

           

          You can use -Djavax.net.debug=all to see which cipher suites is browser requesting and then try to set these cipher suites on Connector element, if it expose such option (i don't know) - something like sslEnabledCipherSuites.