java security problem the page requires a client certificate

Question

I have a certificate. pfx to access a webservice.

I followed the steps listed on this page

When looking at the xml sent is encrypted.

But the server returns me the message:

The page requires a client certificate
.........
HTTP/1.1 403 Forbidden
.......
Server Microsoft-IIS/6.0

I can see the definition of this server from the browser if I have this certificate installed (the certificate is correct).

Also I have to use username and password to see the definition of service.

In the Trustor I have the server certificate.

I'm programming in java and use axis, any ideas why I am getting this error?

score 0 · Answer 1 · edited May 23 '17 at 12:30

0

You need to configure your Axis client to inclue a client certificate with your outgoing request. This is different from server certificates which are more common. This post gives good info on setting up client certs in Java:

edited May 23 '17 at 12:30

Community

1
1

answered Jan 26 '11 at 23:58

Raj

2,852
4
29
48

score 0 · Answer 2 · edited Dec 17 '16 at 11:34

This is the solution:

System.setProperty(“javax.net.ssl.keyStore”, “path/keystore.jks”);
System.setProperty(“javax.net.ssl.keyStorePassword”, “pass”);
System.setProperty(“javax.net.ssl.keyStoreType”, “PKCS12″);
System.setProperty(“javax.net.ssl.trustStore”, “path/trusstore.jks”);
System.setProperty(“javax.net.ssl.trustStorePassword”, “pass”);
System.setProperty(“com.sun.net.ssl.dhKeyExchangeFix”, “true”);

java security problem the page requires a client certificate

2 Answers2