Re: SOAP service over SSL

[Andrew Trieger]

I got this working in Iplanet Enterprise 6.0 with jdk1.4.0, I can send the notes on that if you care, but didnt try with tomcat.  I'll post my notes for that to this list anyways later this week.  I can tell you it was a big help to have the client's certificate (client was a java program) as a .p12 file exported from a netscape browser, the .keystore had the root CA of both the .p12 cert and the cert in the SSL Webserver and to set -Djavax.net.debug=All  when running the server (or set it in the code with System.setProperty(asdf,asdf); ) TONS of debugging messages come out. Drew Trieger Peter wrote: Hi All, I try to config the soap server and tomcat to run SOAP server over SSL. I follow the  instruction about how to config the tomcat to support SSL and client authentication. In tomcat configuration, I have set <Parameter name="clientAuth" value="true"/> After that, I try to use client program to call the soap service and the server side prompt error. Problem: java.lang.reflect.InvocationTargetException: java.net.SocketException: Connection aborted by peer: socket write error Solution: This problem occurs because (for some reason) the server cannot authenticate the client. I know we can by pass the error by changing the following line in server.xml:<Parameter name="clientAuth" value="false"/> But, it is not the solution. Any idea about the problem? In fact, I already import the client cert into the server keystore and the server cert into the client keystore. Thanks brgds Peter --  ---