Re: [Ejbca-develop] ejbca install

SourceForge Headquarters 1320 Columbia Street Suite 310 San Diego, CA 92101 +1 (858) 422-6466

Hi, this is the right list to post the question to.

Probably your problem is that the CA-certificate was not added in the java
cacerts truststore. Did you run the 'install.sh' script when installing?
Did the question when adding the certificate in java go right?
The CA-certificate must be present in the
JAVA_HOME/jre/lib/security/cacerts.

Mozilla FireFox should work fine, I'm using it myself and it's great.

Regards,
Tomas

On Thu, 15 Apr 2004, Nelson wrote:

> Hi,
> I'm evaluating ejbca and have a problem. There are two list, one for
> news and one for develop, if this isn't the correct list please sorry
> and tell me were I can post the mail, thanks.
>
> ambient:
> linux debian 2.4.22
> jboss-3.2.3
> ejbca-3.0-b2
> mysql-4.0.16
> jsdk-1.4.2_03
>
> I install the packages and the public web is working... I add a user and
> generate a user certificate.
> The problem is with the adminweb interface.... I install the superadmin
> certificate but can't login...
> with Mozila Firefox 0.8 the coneccion is canceled and the log file report:
>
> 8<---------------------------------------------------------------------------------------------------------------------------------------------
> 2004-04-15 12:37:25,758 DEBUG
> [org.apache.tomcat.util.net.PoolTcpEndpoint] Handshake failed
> javax.net.ssl.SSLProtocolException: handshake alert: no_certificate
>         at com.sun.net.ssl.internal.ssl.SunJSSE_aw.b(DashoA6275)
>         at com.sun.net.ssl.internal.ssl.SSLSocketImpl.b(DashoA6275)
>         at com.sun.net.ssl.internal.ssl.SSLSocketImpl.a(DashoA6275)
>         at com.sun.net.ssl.internal.ssl.SSLSocketImpl.j(DashoA6275)
>         at
> com.sun.net.ssl.internal.ssl.SSLSocketImpl.startHandshake(DashoA6275)
>         at
> org.apache.tomcat.util.net.jsse.JSSESocketFactory.handshake(JSSESocketFactory.java:158)
>         at
> org.apache.tomcat.util.net.TcpWorkerThread.runIt(PoolTcpEndpoint.java:580)
>         at
> org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:677)
>         at java.lang.Thread.run(Thread.java:534)
> 8<----------------------------------------------------------------------------------------------------------------------------------------------
>
> the error is reported several times... I have the SuperAdmin certificate
> instaled and the CA certificate installed. I never see the page that say
> that I'm not authorized... I play disabling/enabling SSL 2.0, SSL 3.0
> and TLS 1.0... no luck....
>
> with Internet Explorer EJBCA say that I'm not authorized, that my
> certificate isn't in the database..... the log file show that the IE
> give another certificate for the SSL conecction (a thawte certificate)
> not the superadmin...... I active the option to allways let me select
> the certificate to use in a Client SSL autentication, and only show the
> thawte certificate.. not the TestCA cert....
>
> I think I'm missing something... but can't see it.... some one can help
> me ?...
>
> TIA
> --
> :: Nelson ::
>