If the server cert is signed by a known CA who's cert is listed in jre/lib/security/cacerts then you do not have to add it to your keystore (which requires you to override the jsse properties)
Thanks, Ruchith On 8/23/07, baba Anand <[EMAIL PROTECTED]> wrote: > I was just wondering whether we can turn this thing off through some java > property or do I have to include Server certificates in my keystore….!! > Don't know exactly… just a thought…. > > > On 8/23/07, Ruchith Fernando <[EMAIL PROTECTED]> wrote: > > Hi, > > > > The issue simply seems to be that the web site's name does not match > > the one given in the certificate of the site. I don't think this would > > be an issue if you try to access with a java client (I'm not sure > > whether that level of validation is on by default). > > > > Are you trying to use a Java client to access this site? > > > > Thanks, > > Ruchith > > > > On 8/23/07, baba Anand <[EMAIL PROTECTED]> wrote: > > > > > > > > > We have just run into an issue and desperately need your help. > > > > > > We are trying to contact a UDDI server on https. Server presents its own > > > certificate and client has to trust it and present username and password > for > > > basic authentication. It is similar to when we try to access some > secured > > > site through IE and if the server presents a certificate with name > different > > > to host address. > > > > > > Following Security Alert is encountered: see file attached.... > > > > > > > > > > > > In my case UDDI access is a backend operation and there will be no > manual > > > intervention. So I would some how need to disable this verification > while > > > contacting the server. > > > > > > Could you please suggest something? > > > Regards > > > BABA > > > > > > > > > -- > > www.ruchith.org > > www.wso2.org > > > > -- www.ruchith.org www.wso2.org --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
