1 Reply Latest reply on Dec 13, 2004 11:40 AM by Scott Stark

    SSL failure on Linux

    Stanley Beamish Newbie


      I'm using jboss 3.2.5 with version 4.1 of tomcat. When I configure SSL using self-certified certificates then try to access a web app via https then (after being prompted to OK the certificate) I get a http 500 error. I've been using exactly the same configuration on W2K without a problem, enabling SSL the same way. Can anyone enlighten me as to why I may be experiencing problems on Linux (RH fedora).


        • 1. Re: SRP: Multiple clients
          Scott Stark Master

          There are more information that might be important to find out what is the problem.

          On the server side i have the following configuration:

          <application-policy name = "CustomFwRealm">

          <login-module code= "org.jboss.security.srp.jaas.SRPCacheLoginModule"
          flag = "required">
          <module-option name = "cacheJndiName">srp-fw/AuthenticationCache

          <login-module code = "com.security.jaas.FwServerLoginModule"
          flag = "required">
          <module-option name = "password-stacking">useFirstPass</module-option>


          The FwServerLoginModule is a login module that creates a principal and gets the user roles.
          The strange part is that after the the Client application 2 did the login and the Client application 1 calls the method, the login method of this module is called again.
          Althought the login returns true i've got the exception

          2004-12-07 12:23:15,690 ERROR [org.jboss.ejb.plugins.SecurityInterceptor] Authentication exception, principal=nmeira

          and commit is never called...