• Post Reply Bookmark Topic Watch Topic
  • New Topic

My SSL client (Java) isn't sending a certificate back to the server in two-way SSL handshake  RSS feed

 
Appasaheb Neelawani
Greenhorn
Posts: 7
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator


Hi Guys,

We are trying to access a restful web service resource hosted on IIS server with https protocol.

When we disable TWO WAY SSL Auth (server side validation of client certificate disabled) everything works fine,

When the IIS imposes TWO WAY SSL (server side validation of client certificate enabled) we are getting the below exception.

403 - Forbidden: Access is denied.

You do not have permission to view this directory or page using the credentials that you supplied.
We are using java 1.8 update 102 , IIS server 7.5 and TLS 1.2 for ssl

For detailed issue please open the below link

For details SSL Debug log, certificates, client program

It will be great help if someone help us.

Thanks,
Appasaheb
 
Matt Wong
Greenhorn
Posts: 23
3
MS IE Notepad Suse
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Well, you're not using a proper client-certificate / keystore misses private-key. Config of your IIS looks ok.
 
Appasaheb Neelawani
Greenhorn
Posts: 7
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
The issue is solved.

I suppose to use this code while getting httpclient

For more details refer the Stack overflow post
 
Appasaheb Neelawani
Greenhorn
Posts: 7
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
The question is posted on Stack overflow with following question.

SSL client (Java) is not sending a certificate back to the server in two-way SSL handshake

https://stackoverflow.com/questions/47150851/ssl-client-java-is-not-sending-a-certificate-back-to-the-server-in-two-way-ssl
 
  • Post Reply Bookmark Topic Watch Topic
  • New Topic
Boost this thread!