Glassfish and SSL [closed]

Posted by Richard on Server Fault See other posts from Server Fault or by Richard
Published on 2012-11-10T20:07:34Z Indexed on 2012/11/10 23:01 UTC
Read the original article Hit count: 220

Filed under:

I'm struggling to get SSL working on Glassfish 3.1.1. I've been following tutorials like

http://javadude.wordpress.com/2010/04/06/getting-started-with-glassfish-v3-and-ssl/

and SO posts like this

Issues with setting up SSL on Glassfish v3

The above links are for information only. I've summarised what I've done below.

As far as I can tell I'm doing everything correctly but I'm getting this error:

SSL configuration is invalid due to No available certificate or key corresponds to the SSL cipher suites which are enabled

Some background of what I have done: My cert is from GoDaddy. I generated the CSR from a new keystore (keystore.jks), then imported the resulting certs back into the same keystore and set the keystore password to the same pwd as the GF master password. Then created a new SSL listener in GF and pointed it at my keystore file (which I copied into domains/domain1/config). Set the Nickname to the alias of my cert (which is something liem 'mydomain.org' i.e. the name that I get when I run keytool -list. In my ciphers section in the network listeners page, I leave the defaults in place (empty, which means all ciphers are available I think). In domain.xml I've replaced all instances of s1as to 'mydomain.org'.

This is the question: What exactly is causing the error highlighted? I'm guessing it's a mismatch between my listener config and aliases in my keystore, or something similar, but I'm not really sure what.

Thanks

© Server Fault or respective owner

Related posts about glassfish