What is the java error? But in the meantime, since you didn't mention it, there are a few steps you could verify:
1) Since you are using a local keystore, can I assume that you added the certificate to it using the keystore command? 2) By 'mutual authentication' do you mean that the server must authenticate the client's (self-signed) certificate? If so, has it been added to the server's local certificate file? 3) If the server must authenticate multiple certificates, is it calling SSL_CTX_use_certificate_chain_file during init? Later . . . Jim [EMAIL PROTECTED] wrote: > > I have a JSEE client that needs to talk to a server that implements > openssl 0.9.8d. Mutual authentication is required. Even though I added > the JVM parameters used to load the client certificate, I keep getting > handshake failure. Just wonder this is a well known problem and what’s > the appropriate workaround > > Below are the JVM parameters : > > -Djavax.net.debug=all,data,trustManager > -Djavax.net.ssl.keyStore=D:\Test\AmberPointAgent2 > -Djavax.net.ssl.keyStorePassword=password > -Djavax.net.ssl.trustStore=D:\Test\AmberPointAgent > -Djavax.net.ssl.trustStorePassword=password > -Dcom.sun.net.ssl.dhKeyExchangeFix=true > > Thanks > > Lan > > This message is for the designated recipient only and may contain > privileged, proprietary, or otherwise private information. If you have > received it in error, please notify the sender immediately and delete > the original. Any other use of the email by you is prohibited. > ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager [EMAIL PROTECTED]