Solved

Servlet making an SSL connection

Posted on 2004-08-04
3
1,572 Views
Last Modified: 2013-11-29
I have a server that uses a servlet to send a message via HTTPS to an authorize.net gateway. The server SSL works find, however the client side is being rejected with a "javax.net.ssl.SSLException: untrusted server cert chain" message.

What do I need to configure for the client servlet to work with SSL? Do I need to create another keystore? What certificates to I need to import? Does it matter what aliases I use?

Thanks
Ross
0
Comment
Question by:w0lver
3 Comments
 
LVL 19

Expert Comment

by:cheekycj
ID: 11722573
Just ran into this a month ago with a vendor of ours using instant ssl certs.

what SSL cert do you have installed on your server?

Untrusted Cert chain is usually due to the cert you have not being one of the accepted ones in the jdk's keystore.

You have to import the certs on your server to the client's keystore.

Instructions can be found at:
http://www.instantssl.com/ssl-certificate-support/cert_installation/ssl-certificate-java.html?currency=USD®ion=North%20America&country=US
or
http://www.jodohost.com/reseller/html/merchant_thepaydesk.html

CJ
0
 
LVL 23

Expert Comment

by:rama_krishna580
ID: 11745148
Hi,

look at here, it may help you...

I think you need to import the certificate from that site into the Java
key store. To do this, you use the keytool utility from the JDK:

keytool -import
        -keystore <path_to_JDK_installation>/jre/lib/security/cacerts
        -alias <some_nickname_you_choose_for_the_site>
        -file <path_to_certificate_file>
(this is all on one command line)

It will prompt you for the key store password. If the password was not
changed since the JDK installation, it defaults to "changeit" (at least
in JDK 1.3).

best of luck...

R.K
0
 
LVL 1

Accepted Solution

by:
justywong earned 500 total points
ID: 11770560
it can be caused by the CA of the server cert not exist in your trusted cacerts store.
you can import the CA cert into your cacerts file. for more details, you can reference to the following link:

http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/57436

in part 4 (workaround), you should be able to find the solution.
0

Featured Post

Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
BIG IP GTM upgrade 2 153
Woocommerce Webservice 2 96
specific questions about shipping a coat 4 56
PCI-DSS Compliance:  third-party e-commerce embedded code security 5 30
E-commerce is quite a gambling world, and you should never entrust your business to a lucky chance. In order to outrun your competitors in a race to attract as many customers as possible, you need to have a well thought-out strategy under your belt.…
Meet the world's only “Transparent Cloud™” from Superb Internet Corporation. Now, you can experience firsthand a cloud platform that consistently outperforms Amazon Web Services (AWS), IBM’s Softlayer, and Microsoft’s Azure when it comes to CPU and …
This video explains how to create simple products associated to Magento configurable product and offers fast way of their generation with Store Manager for Magento tool.
You have products, that come in variants and want to set different prices for them? Watch this micro tutorial that describes how to configure prices for Magento super attributes. Assigning simple products to configurable: We assigned simple products…

829 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question