I am connecting to a webservice secured by SSL v3. Although I have the cert in my keystore it is failing. I found that if I browse the webservice from my server using IE (with less forgiving security settings), I can see this error appear:
Revocation Information for the security certificate is not available. Do you want to proceed?
But it leads me to suspect that my webservice's connection error is being caused by my webservice not being able to respond to this question with a Yes or No answer.
I am using Coldfusion, which sits on top of Java. Is there a way to tell it to ignore certificate errors?
Alternatively, how could the certificate holder update the certificate to keep this error from happening?
Here's some sample code...
<cfset wsargs = structnew()>
<CFSET javaSystem = createObject("java", "java.lang.System") />
<CFSET prop = javaSystem.getProperties() />
<CFSET prop.setProperty("javax.net.ssl.trustStore", "D:\CFusion8\runtime\jre\lib\security\cacerts") />
<CFSET prop.setProperty("javax.net.ssl.trustStorePassword", "changeit") />
<cfset ws = CreateObject("webservice","https://theirWebSite.com/ws2008/service.asmx?wsdl", wsargs)>
<cfset ws._setProperty("axis.transport.version", "1.1")>