Trust additional SSL CA

I

Ian Pilcher

I am working on a project which will use XML-RPC over SSL (https).
Unfortunately, the server with which I am communicating has a
certificate which is signed with our internal CA key, rather than a
standard trusted CA key. For now, I've simply disabled all of the SSL
checks entirely, using the method described here:

http://ws.apache.org/xmlrpc/ssl.html

Since I do have a copy of the CA certificate, however, I'd much rather
use it to actually verify the server's identity when I connect. I did
try importing the CA certificate into my keystore, but that didn't make
any difference.

Can anyone point me to something that will get me started in the right
direction?

Thanks!
 
E

Esmond Pitt

Ian said:
I did
try importing the CA certificate into my keystore, but that didn't make
any difference.
Click to expand...

Import it into your *truststore*, i.e. 'cacerts', 'jssecacerts', or the
truststore you supplied when creating the initial SSLContext or the one
you named in the javax.net.ssl.truststore property.
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

Trust CA cert without modifying keystore 3
SSL trust chains 0
client ssl verification 0
Verifying an assumption around possible problem areas in SSL handshake 3
SSL client program 20
"Failed set trust point in ssl context" when using SSL communication 0
SSL Client Certificate error on Mac OS X 10.6.4 4
SSL Client certificate 1

Members online

Total: 25 (members: 1, guests: 24)
Robots: 362

Forum statistics

Threads
473,769
Messages
2,569,582
Members
45,066
Latest member
VytoKetoReviews

Latest Threads

Top