Nelson, Thank you for your response.
The module is an access manager Apache agent module from Sun (libamapc2). This gets loaded when Apache starts and handles handles authentication of AM protected applications. You are correct that I don't see sec_error_ext_not_found in logs, but I found it is happening from tracing AM agent module. The error message in the AM agent module is all: Connection::read(): NSPR Error while reading data:-5990 AuthService: BaseService::doRequest() caught NSPRException: PR_Recv called by Connection::read() returned PR_IO_TIMEOUT_ERROR The NSS/NSPR/SSL library that we are using is the one shipped with Solaris 10 update 6. NSPR version = 4.6.7 NSS version = 3.11.7 libssl is also the same version as NSS we have a working config NSS 3.11.10 NSPR 4.7.1 The AM agent modules itself is not configured with a CA cert that trusts, that's what I have been told and I have also been told it is configured to trust all certs since this only involves internal SSL communication with internal load balancer. Is the application (AM agent module) trying to create some temp certificate when it calls __CERT_NewTempCertificate? Any reference where I can get more info is appreciated. Thanks SN -- dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
