Re: Tomcat with SSL and Client certificate

2002-10-18 Thread Mehmet Birgi 


Frédéric LE MAISTRE wrote:

are you sure of the syntax?
Because startup -Djavax.net.debug=all  didn't do anything


try: -Djavax.net.debug=ssl (to see all sll related stuff)
or: -Djavax.net.debug=help (to see your options)



- Original Message -
From: "Wolfgang Stein" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Thursday, October 17, 2002 9:40 AM
Subject: Re: Tomcat with SSL and Client certificate



Start Tomcat with the additional option
   -Djavax.net.debug=all
and watch the console. Although you will get a lot
of output, it might help you in identifying the problem.

Good luck,
Wolfgang Stein



-Original Message-
From: Frédéric LE MAISTRE [mailto:be.info@;lafon.fr]
Sent: Thursday, October 17, 2002 8:39 AM
To: Tomcat Users List
Subject: Tomcat with SSL and Client certificate


I made an SSL connection between Tomcat server and IE client.
It seems to
work, but by the way Tomcat get an exception :
Handshake failed
javax.net.ssl.SSLException: error while writing to socket
, although the client certificate is well recognized and SSL
is enabled.
Somebody knows what"s wrong?

Thanks

Fredd



--
To unsubscribe, e-mail:
<mailto:tomcat-user-unsubscribe@;jakarta.apache.org>
For additional commands, e-mail:
<mailto:tomcat-user-help@;jakarta.apache.org>



--
To unsubscribe, e-mail:   <mailto:tomcat-user-unsubscribe@;jakarta.apache.org>
For additional commands, e-mail: <mailto:tomcat-user-help@;jakarta.apache.org>





--
To unsubscribe, e-mail:   <mailto:tomcat-user-unsubscribe@;jakarta.apache.org>
For additional commands, e-mail: <mailto:tomcat-user-help@;jakarta.apache.org>

Re: Tomcat with SSL and Client certificate

2002-10-17 Thread Wolfgang Stein 

No i am not. It was a while ago when i used
the option successfully for debugging SSL
on Tomcat 3.2.X. at least. 

Not sure whether i were running on jdk 1.3 or 1.2

It triggered a lot of output about the SSL-handshake
into the WinNT console window. 

Don't have the Catalina startup scripts at hand,
but you might try setting the option in ctatlina.bat
resp. in the environment var CATALINA_OPTS or so.

Cheers,
Wolfgang Stein


> -Original Message-
> From: Frédéric LE MAISTRE [mailto:[EMAIL PROTECTED]]
> Sent: Thursday, October 17, 2002 9:45 AM
> To: Tomcat Users List
> Subject: Re: Tomcat with SSL and Client certificate
> 
> 
> are you sure of the syntax?
> Because startup -Djavax.net.debug=all  didn't do anything


> - Original Message -
> From: "Wolfgang Stein" <[EMAIL PROTECTED]>
> To: <[EMAIL PROTECTED]>
> Sent: Thursday, October 17, 2002 9:40 AM
> Subject: Re: Tomcat with SSL and Client certificate
> 
> 
> 
> Start Tomcat with the additional option
>-Djavax.net.debug=all
> and watch the console. Although you will get a lot
> of output, it might help you in identifying the problem.
> 
> Good luck,
> Wolfgang Stein
> 
> > -Original Message-
> > From: Frédéric LE MAISTRE [mailto:[EMAIL PROTECTED]]
> > Sent: Thursday, October 17, 2002 8:39 AM
> > To: Tomcat Users List
> > Subject: Tomcat with SSL and Client certificate
> >
> >
> > I made an SSL connection between Tomcat server and IE client.
> > It seems to
> > work, but by the way Tomcat get an exception :
> > Handshake failed
> > javax.net.ssl.SSLException: error while writing to socket
> > , although the client certificate is well recognized and SSL
> > is enabled.
> > Somebody knows what"s wrong?
> >
> > Thanks
> >
> > Fredd
> 
> --
>

--
To unsubscribe, e-mail:   <mailto:[EMAIL PROTECTED]>
For additional commands, e-mail: <mailto:[EMAIL PROTECTED]>

Re: Tomcat with SSL and Client certificate

2002-10-17 Thread Frédéric LE MAISTRE 

are you sure of the syntax?
Because startup -Djavax.net.debug=all  didn't do anything
- Original Message -
From: "Wolfgang Stein" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Thursday, October 17, 2002 9:40 AM
Subject: Re: Tomcat with SSL and Client certificate



Start Tomcat with the additional option
   -Djavax.net.debug=all
and watch the console. Although you will get a lot
of output, it might help you in identifying the problem.

Good luck,
Wolfgang Stein

> -Original Message-
> From: Frédéric LE MAISTRE [mailto:[EMAIL PROTECTED]]
> Sent: Thursday, October 17, 2002 8:39 AM
> To: Tomcat Users List
> Subject: Tomcat with SSL and Client certificate
>
>
> I made an SSL connection between Tomcat server and IE client.
> It seems to
> work, but by the way Tomcat get an exception :
> Handshake failed
> javax.net.ssl.SSLException: error while writing to socket
> , although the client certificate is well recognized and SSL
> is enabled.
> Somebody knows what"s wrong?
>
> Thanks
>
> Fredd

--
To unsubscribe, e-mail:
<mailto:[EMAIL PROTECTED]>
For additional commands, e-mail:
<mailto:[EMAIL PROTECTED]>



--
To unsubscribe, e-mail:   <mailto:[EMAIL PROTECTED]>
For additional commands, e-mail: <mailto:[EMAIL PROTECTED]>

Re: Tomcat with SSL and Client certificate

2002-10-17 Thread Wolfgang Stein 


Start Tomcat with the additional option
   -Djavax.net.debug=all  
and watch the console. Although you will get a lot
of output, it might help you in identifying the problem.

Good luck,
Wolfgang Stein

> -Original Message-
> From: Frédéric LE MAISTRE [mailto:[EMAIL PROTECTED]]
> Sent: Thursday, October 17, 2002 8:39 AM
> To: Tomcat Users List
> Subject: Tomcat with SSL and Client certificate
> 
> 
> I made an SSL connection between Tomcat server and IE client. 
> It seems to
> work, but by the way Tomcat get an exception :
> Handshake failed
> javax.net.ssl.SSLException: error while writing to socket
> , although the client certificate is well recognized and SSL 
> is enabled.
> Somebody knows what"s wrong?
> 
> Thanks
> 
> Fredd

--
To unsubscribe, e-mail:   
For additional commands, e-mail:

Re: Tomcat with SSL and Client certificate

2002-10-17 Thread Frédéric LE MAISTRE 

because if I delete the client certificate for example, I have the same
error but my browser didn't show nothing. In my case, I see my page and the
little padlock in the bottom right of the browser

Strange isn't it?
- Original Message -
From: "Mehmet Birgi" <[EMAIL PROTECTED]>
To: "Tomcat Users List" <[EMAIL PROTECTED]>
Sent: Thursday, October 17, 2002 9:24 AM
Subject: Re: Tomcat with SSL and Client certificate


> how do you know the client certificate is "well recognized"? This error
> usually means that the client authentication is not working, you can
> check this by setting ClientAuth="false" and retrying.
>
> cheers,
>
> memo
>
>
> Frédéric LE MAISTRE wrote:
> > I made an SSL connection between Tomcat server and IE client. It seems
to
> > work, but by the way Tomcat get an exception :
> > Handshake failed
> > javax.net.ssl.SSLException: error while writing to socket
> > , although the client certificate is well recognized and SSL is enabled.
> > Somebody knows what"s wrong?
> >
> > Thanks
> >
> > Fredd
> >
> >
> > --
> > To unsubscribe, e-mail:
<mailto:[EMAIL PROTECTED]>
> > For additional commands, e-mail:
<mailto:[EMAIL PROTECTED]>
> >
> >
>
>
> --
> To unsubscribe, e-mail:
<mailto:[EMAIL PROTECTED]>
> For additional commands, e-mail:
<mailto:[EMAIL PROTECTED]>
>
>


--
To unsubscribe, e-mail:   <mailto:[EMAIL PROTECTED]>
For additional commands, e-mail: <mailto:[EMAIL PROTECTED]>

Re: Tomcat with SSL and Client certificate

2002-10-16 Thread Mehmet Birgi 

how do you know the client certificate is "well recognized"? This error 
usually means that the client authentication is not working, you can 
check this by setting ClientAuth="false" and retrying.

cheers,

memo


Frédéric LE MAISTRE wrote:
> I made an SSL connection between Tomcat server and IE client. It seems to
> work, but by the way Tomcat get an exception :
> Handshake failed
> javax.net.ssl.SSLException: error while writing to socket
> , although the client certificate is well recognized and SSL is enabled.
> Somebody knows what"s wrong?
> 
> Thanks
> 
> Fredd
> 
> 
> --
> To unsubscribe, e-mail:   
> For additional commands, e-mail: 
> 
> 


--
To unsubscribe, e-mail:   
For additional commands, e-mail: