Take care of you and your loved ones.
Original Message:
Sent: Wed November 29, 2023 03:47 AM
From: LI MIN YU
Subject: Setting up SSL on IBM HTTP Server 8.5.5 issues
SSL0223E: SSL Handshake Failed, No certificate.
It's mean you do not have a default personal certificate!
Which version of you IBM HTTP Server?
../bin/gskcapicmd -cert -list -db certihs01qa/certihs01qa.kdb -stashed
Certificates found
* default, - personal, ! trusted
! certihs01qa
There are showing certihs01qa signer certificate is the trusted signer certificate. but don't have any *default -personal certificate.
such as
! certihs01qa
*- SelfSigned
You can create a self signed personal certificate by issue cmd:
../bin/gskcmd -cert -create -label SelfSigned -db certihs01qa\certihs01qa.kdb -pw kdbihs01qa -dn "CN=www.Java2Class.net" -expire 3650 -default_cert yes
and Which version of your Web Server Plug-ins for IBM WebSphere Application Server if you will connect to WAS or Liberty?
------------------------------
LI MIN YU
Original Message:
Sent: Tue November 28, 2023 07:57 PM
From: Ismael Gutierrez
Subject: Setting up SSL on IBM HTTP Server 8.5.5 issues
Hello to all
It's the first time that I have to configure SSL in HTTT Server. I have made the csr file (by using openssl linux utility) to send it, I recieved a .cer file from a CA. Below are the commands used to create the kdb and so on
../bin/gskcapicmd -keydb -create -db certihs01qa/certihs01qa.kdb -pw kdbihs01qa -stash
../bin/gskcapicmd -cert -add -db certihs01qa/certihs01qa.kdb -stashed -file certihs01qa/certihs01qa.cer -label certihs01qa
I have validated the certificate in the KDB with:
../bin/gskcapicmd -cert -list -db certihs01qa/certihs01qa.kdb -stashed
Certificates found
* default, - personal, ! trusted
! certihs01qa
When I want to set it as default by executing the command:
../bin/gskcmd -cert -setdefault -label certihs01qa -db certihs01qa/certihs01qa.kdb
an error message appears:
The database doesn't contain a key entry with label 'certihs01qa'.
Check the label and try again.
An error message in the HTTP log error file appears:
[11037] SSL0223E: SSL Handshake Failed, No certificate.
I am about to blow, I have read a lot of documents and I haven´t find the solution.
Can you help me please? What am I doing wrong or different?
Thanks a lot!!!
------------------------------
Ismael Gutierrez E
IT Consutant Senior
Please, stay safe!
Take care of you and your loved ones.
------------------------------