Discussions

General J2EE: Problems with SSL

Bookmark and Share Get thread feed

  1. Problems with SSL (2 messages)

    Hi,
    I've a problem trying to use JSSE with a certificate obtained from a Microsoft Certificate Server (actually the problem happens using SSL with JBoss+Tomcat but it doesn't seem related to the specific JBoss configuration).
    The certificate uses the RSA algorythm is exported using the BASE64 format. Then I produced a keystore importing the certificate. When I launch JBoss+Tomcat I get the following exception:

    javax.net.ssl.SSLException: No available certificate corresponds to the SSL cipher suites which are enabled.

    I've checked the enabled cipher suites and these are:
    SSL_DHE_DSS_WITH_DES_CBC_SHA
    SSL_DHE_DSS_WITH_3DES_EDE_CBC_SHA
    SSL_DHE_DSS_EXPORT_WITH_DES40_CBC_SHA
    SSL_RSA_WITH_RC4_128_MD5
    SSL_RSA_WITH_RC4_128_SHA
    SSL_RSA_WITH_DES_CBC_SHA
    SSL_RSA_WITH_3DES_EDE_CBC_SHA
    SSL_RSA_EXPORT_WITH_RC4_40_MD5

    It seems that the algorithm used by the MS Certificate Server is not supported by Java SSL implementation. Am I correct?
    Does anybody have an idea?
    Thanks in advance,
    Andrea
    Reply to this

    Threaded Messages (2)

  2. Problems with SSL[ Go to top ]

    There are a few hits out there reporting the same exception. Here are a couple that seem similar and may provide the answer:

    http://www.caucho.com/quercus/faq/question.xtp?question_id=1306

    http://saloon.javaranch.com/cgi-bin/ubb/ultimatebb.cgi?ubb=get_topic&f=8&t=000818

    Good luck,

    Salomon Zalzman
    Versant Corporation
    http://www.versant.com
    Reply to this Reply to original

  3. Problems with SSL[ Go to top ]

    Salomon, thanks for your links! I've followed the instructions of the first link and now JBoss(+Tomcat) starts without problem but when I connect via IE using HTTPS the browser says that "The page cannot be displayed".
    I checked my browser settings and SSL 3, SSL 2 and TLS 1 are enabled. 128-bit cypher strength is enabled.
    Then I tried to connect using Firefox but it says "Could not establish an encrypted connection because certificate presented by localhost is invalid or corrupted. Error code: -8108".
    If I open the certificates (in Windows) used to generate the keystore they are valid.

    Any idea?

    Thanks in advance,
    Andrea
    Reply to this Reply to original