Which version of Geronimo are you using? You should be able to see what
value is set for *javax.net.ssl.trustStore system property through the JVM
portlet in Admin Console.
*
On Jan 17, 2008 3:12 AM, John Graham [EMAIL PROTECTED] wrote:
Hello,
I'm using a geronimo-based app to connect to an SSL-based LDAP server.
When I initially connected I got an error indicating I needed to add the
server's certficate to Geronimo's keystore. So I used the web interface to
do that, and it added the requisite certificate to a file called
ssl-keystore-1. When I connected again, after restarting my app, I get the
same can't find valid certification path to requested target.
I used the linux 'strace' command to examine the system calls the java
process was making, and found it was *not* opening ssl-keystore-1, but a
file called keystore. So I presume this is the heart of the problem. After
googling a bit, I notice there used to be a keystoreLocation parameter for
geronimo, but I don't have the ability to configure that in my deployment.
Likewise, I tried setting JAVA_OPT= *-Djavax.net.ssl.trustStore=path of
ssl-keystore-1, and restarted my app. Still the same error, and the java
process was still opening up keystore.
Does anyone know how to resolve this problem?
Thanks,
- J o h n
*