WebSphere Application Server & Liberty

WebSphere Application Server & Liberty

Join this online group to communicate across IBM product users and experts by sharing advice and best practices with peers and staying up to date regarding product enhancements.

 View Only
Back to discussions
Expand all | Collapse all

Default Trust Store WebSphere 8.5

  • 1.  Default Trust Store WebSphere 8.5

    Posted Fri April 25, 2014 09:04 AM
    Hi,

    We are currently migrating from WAS 6.1 to WAS8.5. We've had a problem with an application that makes an SSL call.


    In WAS6.1 we needed to our in house signer certificate to the CellDefaultTrust. The application in question could make successful SSL calls using our own certificate.

    Since moving to 8.5 there are now more scopes for TrustStores. Cell and now node level. We have added outr signer (CA) to each of the truststores at cell and at node level. The application makes in the same call, no code change and we get a SSL_HANDSHAKE issue. And the following error[] [04-23 10:17:00] - Make sure that the certificate is imported into cacerts around this locaton: /opt/ibm/WebSphere/85/AppServer/tivoli/tam:/opt/ibm/WebSphere/85/AppServer/java_1.7_64/jre/lib/ext


    I'm not sure why i would have to add the CA to the CACERTs file as we've already done it on WAS8.5, I have since added the CA and we still get the issue.

    Any ideas?

    Thanks


    Frankie      

      
      


Related Content