Solved

Servlet making an SSL connection

Posted on 2004-08-04
3
1,568 Views
Last Modified: 2013-11-29
I have a server that uses a servlet to send a message via HTTPS to an authorize.net gateway. The server SSL works find, however the client side is being rejected with a "javax.net.ssl.SSLException: untrusted server cert chain" message.

What do I need to configure for the client servlet to work with SSL? Do I need to create another keystore? What certificates to I need to import? Does it matter what aliases I use?

Thanks
Ross
0
Comment
Question by:w0lver
3 Comments
 
LVL 19

Expert Comment

by:cheekycj
ID: 11722573
Just ran into this a month ago with a vendor of ours using instant ssl certs.

what SSL cert do you have installed on your server?

Untrusted Cert chain is usually due to the cert you have not being one of the accepted ones in the jdk's keystore.

You have to import the certs on your server to the client's keystore.

Instructions can be found at:
http://www.instantssl.com/ssl-certificate-support/cert_installation/ssl-certificate-java.html?currency=USD®ion=North%20America&country=US
or
http://www.jodohost.com/reseller/html/merchant_thepaydesk.html

CJ
0
 
LVL 23

Expert Comment

by:rama_krishna580
ID: 11745148
Hi,

look at here, it may help you...

I think you need to import the certificate from that site into the Java
key store. To do this, you use the keytool utility from the JDK:

keytool -import
        -keystore <path_to_JDK_installation>/jre/lib/security/cacerts
        -alias <some_nickname_you_choose_for_the_site>
        -file <path_to_certificate_file>
(this is all on one command line)

It will prompt you for the key store password. If the password was not
changed since the JDK installation, it defaults to "changeit" (at least
in JDK 1.3).

best of luck...

R.K
0
 
LVL 1

Accepted Solution

by:
justywong earned 500 total points
ID: 11770560
it can be caused by the CA of the server cert not exist in your trusted cacerts store.
you can import the CA cert into your cacerts file. for more details, you can reference to the following link:

http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/57436

in part 4 (workaround), you should be able to find the solution.
0

Featured Post

What Is Threat Intelligence?

Threat intelligence is often discussed, but rarely understood. Starting with a precise definition, along with clear business goals, is essential.

Join & Write a Comment

Suggested Solutions

Title # Comments Views Activity
Condo value reappraisal question 7 77
Crowd funding for political "FOR-profit" 5 62
What does Survey Monkey cost? 7 81
Pdf to Mobi 1 29
E-commerce is quite a gambling world, and you should never entrust your business to a lucky chance. In order to outrun your competitors in a race to attract as many customers as possible, you need to have a well thought-out strategy under your belt.…
SSL stands for “Secure Sockets Layer” and an SSL certificate is a critical component to keeping your website safe, secured, and compliant. Any ecommerce website must have an SSL certificate to ensure the safe handling of sensitive information like…
This tutorial demonstrates a quick way of adding group price to multiple Magento products.
You have products, that come in variants and want to set different prices for them? Watch this micro tutorial that describes how to configure prices for Magento super attributes. Assigning simple products to configurable: We assigned simple products…

706 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

18 Experts available now in Live!

Get 1:1 Help Now