I have successfully setup one way https authentication between my web service client and server. The next step is to enable two-way auth but I'm having problems doing it.
To make sure two-way auth kicks in, I wanted to have client auth fail on purpose. However, client requests are not rejected as planned. In axis2.xml, I have added the following: <parameter name="truststore" locked="false"> <TrustStore> <Location>trust.jks</Location> <Type>JKS</Type> <Password>changeit</Password> </TrustStore> </parameter> <parameter name="SSLVerifyClient">require</parameter> I volontarily left the trust store empty. I have left services.xml unchanged, as well as my client. Can anyone tell me what I am missing? I'm using Axis2 1.4.1 and Rampart 1.4. Thanks!