Skip to Main Content

Java SE (Java Platform, Standard Edition)

Announcement

For appeals, questions and feedback about Oracle Forums, please email oracle-forums-moderators_us@oracle.com. Technical questions should be asked in the appropriate category. Thank you!

Java Keystore Algorithm

SM_MiddlewareMay 23 2021

I am using SOA 11g on top of Weblogic 10.3.6 (Oracle JDK7). We are having external https webservice calls. We are using truststore with below command.

-Djavax.net.ssl.trustStore=/u01/apptest/cert/pi-truststore.jks

For one of the client we are calling https://clientname.ae from our composite. Certificate for clientname.ae is expiring and since we have server certificate for clientname.ae we will be adding renewed certificate as well in our truststore.
I need to know in such scenarios is it required to delete old certificate after updating renewed certificate. Is there a possibility java may try to use old certificate and ssl connection may fail. What is the algorithm used here by Java. Will it check all the certificate from the keystore or it will stop after finding first certificate with same cn and will stop there even if the certificate is expired.

Comments

DraganT.
Answer

Hi

we got the problem solved by changing the port number from 587 to 465. 

Now we are also able to send E-Mails to Amazon WorkMail / SES using APEX_MAIL package.

 

Why it makes a difference we cannot explain yet, as the APEX_MAIL package is built upon the UTL_SMTP package according to Oracle documentation.

 

Our working settings now are: 

SMTP Host Address: email-smtp.eu-west-1.amazonaws.com

SMTP Host Port: 465

SMTP Authentication Username: UserName

SMTP Authentication Password: Pw

Use SSL/TLS: Yes

Default Email From Address: info@alytics.ch

Maximum Emails per Workspace: 1000

 

Thanks

Dragan

Marked as Answer by DraganT. · Sep 27 2020
1 - 1

Post Details

Added on May 23 2021
0 comments
269 views