I have successfully setup one way https authentication between my web
service client and server. The next step is to enable two-way auth but I'm
having problems doing it.
To make sure two-way auth kicks in, I wanted to have client auth fail on
purpose. However, client requests are not rejected as planned.
In axis2.xml, I have added the following:
<parameter name="truststore" locked="false">
<TrustStore>
<Location>trust.jks</Location>
<Type>JKS</Type>
<Password>changeit</Password>
</TrustStore>
</parameter>
<parameter name="SSLVerifyClient">require</parameter>
I volontarily left the trust store empty. I have left services.xml
unchanged, as well as my client.
Can anyone tell me what I am missing?
I'm using Axis2 1.4.1 and Rampart 1.4.
Thanks!
