AnsweredAssumed Answered

DevTest SSL Setup - Raw Soap Request

Question asked by lowkh01 Employee on Jul 21, 2015
Latest reply on Feb 21, 2017 by Kundan8719

Objective:

- Invoke a HTTPS service endpoint using DevTest 8.1.0

 

Setup Done:

- With reference to the like in the documentation, I have setup properties for the following keys:

ssl.client.cert.path

ssl.client.cert.pass

- keystore & password has been verified using SOAPUI client.



Documentation Reference

DevTest Doc Library

 

SSL Error Log (Workstation generated during invoking test)

[   3] ***

[   3] Thread-1434, WRITE: TLSv1 Handshake, length = 48

[   3] Thread-1434, READ: TLSv1 Alert, length = 2

[   3] Thread-1434, RECV TLSv1 ALERT:  fatal, bad_certificate

[   3] %% Invalidated:  [Session-27, TLS_RSA_WITH_AES_256_CBC_SHA]

[   3] Thread-1434, called closeSocket()

[   3] Thread-1434, handling exception: javax.net.ssl.SSLHandshakeException: Received fatal alert: bad_certificate

[   3] Thread-1434, called close()

[   3] Thread-1434, called closeInternal(true)

[   3] [SSL Handshake Summary] Thread [Thread-1434]

[   3] [SSL Handshake Summary] Acting as a Client

[   3] [SSL Handshake Summary]  *†‡ indicates linked optional steps

[   3] [SSL Handshake Summary]

[   3] [SSL Handshake Summary]  1  RUN                             Client Hello -->

[   3] [SSL Handshake Summary]  2  RUN                                          <-- Server Hello                      

[   3] [SSL Handshake Summary]  3* RUN                                          <-- Server Certificate (Public Key)   

[   3] [SSL Handshake Summary]  4† RUN                                          <-- Request Client Certificate        

[   3] [SSL Handshake Summary]  5* UNKNOWN  Verify and Trust Server Certificate v 

[   3] [SSL Handshake Summary]  6‡ SKIPPED                                      <-- Server Key Exchange               

[   3] [SSL Handshake Summary]  7  RUN                                          <-- Server Hello Done                 

[   3] [SSL Handshake Summary]  8† RUN          Client Certificate (Public Key) -->

[   3] [SSL Handshake Summary]  9† UNKNOWN                                        v Verify and Trust Client Certificate

[   3] [SSL Handshake Summary] 10  RUN                      Client Key Exchange -->

[   3] [SSL Handshake Summary] 11† WARN         Certificate Verify Confirmation -->

[   3] [SSL Handshake Summary] 12  RUN                Client Change Cipher Spec -->

[   3] [SSL Handshake Summary] 13  RUN                          Client Finished -->

[   3] [SSL Handshake Summary] 14  UNKNOWN                                      <-- Server Change Cipher Spec         

[   3] [SSL Handshake Summary] 15  UNKNOWN                                      <-- Server Finished                   

[   3] [SSL Handshake Summary]

[   3] [SSL Handshake Summary] RECV TLSv1 ALERT:  fatal, bad_certificate

[   3] [SSL Handshake Summary] javax.net.ssl.SSLHandshakeException: Received fatal alert: bad_certificate

[   3] [SSL Handshake Summary] There was a problem with the Client identity certificate

Outcomes