3 Replies Latest reply: Feb 13, 2013 7:37 PM by EJP RSS

    SSLHandShakeException's fatal alert certificate_unknown

    893921
      Trying to connect RMI SSL Client with RMI non-SSL Server with and getting following exception. How should i check SSLHandShakeException's fatal alert certificate_unknown in the code ? Also I am setting SSL properties(keystore, truststore, passwords) using System.setPropertiy()



      **
      *** ServerHelloDone
      RMI TCP Connection(11)-10.229.194.39, WRITE: TLSv1 Handshake, length = 659
      RMI TCP Connection(11)-10.229.194.39, READ: TLSv1 Alert, length = 2
      RMI TCP Connection(11)-10.229.194.39, RECV TLSv1 ALERT: fatal, certificate_unknown
      RMI TCP Connection(11)-10.229.194.39, called closeSocket()
      RMI TCP Connection(11)-10.229.194.39, handling exception: javax.net.ssl.SSLHandshakeException: Received fatal alert: certificate_unknown
      RMI TCP Connection(11)-10.229.194.39, called close()
      RMI TCP Connection(11)-10.229.194.39, called closeInternal(true)
      Allow unsafe renegotiation: false
      Allow legacy hello messages: true
      Is initial handshake: true
      Is secure renegotiation: false
      Allow unsafe renegotiation: false
      Allow legacy hello messages: true
      Is initial handshake: true
      Is secure renegotiation: false
      RMI TCP Connection(12)-10.229.194.39, setSoTimeout(7200000) called
      RMI TCP Connection(12)-10.229.194.39, READ: SSL v2, contentType = Handshake, translated length = 73
      *** ClientHello, TLSv1
      RandomCookie: GMT: 1360739234 bytes = { 103, 192, 214, 126, 21, 70, 8, 98, 28, 38, 177, 79, 93, 98, 219, 3, 14, 199, 232, 12, 186, 102, 148, 116, 240, 107, 25, 14 }
      Session ID: {}