× The internal search function is temporarily non-functional. The current search engine is no longer viable and we are researching alternatives.
As a stop gap measure, we are using Google's custom search engine service.
If you know of an easy to use, open source, search engine ... please contact support@midrange.com.


  1.  Home
  2. MIDRANGE-L
  3. October 2014

RE: Enabling SSL for Rocket iSeries Jwalk Server for Java Client - Warning T02-Peer certificate verification >>>This certificate is not trusted

Chris,

Rocket/Jwalk does not use a store, everything is in the Jwalk.ini file that resides in IFS folder SEAJWK.

; SecureAlternateCommonName=name The common name of a certificate that should be accepted even though it does not match the site name
; SecureCertificateAuthorityFile=name The certificate authority file to use if the secure root database of Windows is not available or wanted
; SecureCertificateAuthorityPath=name The certificate authority path to use if the secure root database of Windows is not available or wanted.
; It points to a directory containing CA certificates in PEM format.
; The files each contain one CA certificate.
; SecureCertificateFile=name File containing the certificate that the server should send to the connecting secure client
; SecureClient=0 Use SSL when listening for incoming secure Client connections (0=No, 1=Yes)
; SecureManagementConsole=0 Use SSL when listening for incoming Browser connection for the Management Console (0=No, 1=Yes)
; SecurePrivateKeyFile=name The file containing the private key that belongs to the certificate that the server sends
; SecureServerPort=1299 To which port should the server listen for incoming secure connections
; ServerLocalIPAddress=name Identification of local IP Address for server


SecureAlternateCommonName=*.pencor.com
SecureCertificateAuthorityFile=/SSLCERTS/SSLPSI/ca-certificate.pem
SecureCertificateFile=/SSLCERTS/SSLPSI/certificate.pem
SecurePrivateKeyFile=/SSLCERTS/SSLPSI/privatekey.pem

Paul



-----Original Message-----
From: MIDRANGE-L [mailto:midrange-l-bounces@xxxxxxxxxxxx] On Behalf Of Chris Bipes
Sent: Friday, October 31, 2014 4:11 PM
To: 'Midrange Systems Technical Discussion'
Subject: RE: Enabling SSL for Rocket iSeries Jwalk Server for Java Client - Warning T02-Peer certificate verification >>>This certificate is not trusted

Then the app will need the CA cert in its own data store. But and am not all that familiar with Rocket so if it does not use the system certificate store, it must have its own.

Chris Bipes
Director of Information Services
CrossCheck, Inc.

-----Original Message-----
From: MIDRANGE-L [mailto:midrange-l-bounces@xxxxxxxxxxxx] On Behalf Of Steinmetz, Paul
Sent: Friday, October 31, 2014 1:03 PM
To: 'Midrange Systems Technical Discussion'
Subject: RE: Enabling SSL for Rocket iSeries Jwalk Server for Java Client - Warning T02-Peer certificate verification >>>This certificate is not trusted

Chris,

This app does NOT use the IBM DCM keystore.
A different app that uses this same cert within DCM keystore works fine.

--
This is the Midrange Systems Technical Discussion (MIDRANGE-L) mailing list To post a message email: MIDRANGE-L@xxxxxxxxxxxx To subscribe, unsubscribe, or change list options,
visit: http://lists.midrange.com/mailman/listinfo/midrange-l
or email: MIDRANGE-L-request@xxxxxxxxxxxx Before posting, please take a moment to review the archives at http://archive.midrange.com/midrange-l.


As an Amazon Associate we earn from qualifying purchases.

This thread ...
Replies:
Follow On AppleNews
Return to Archive home page | Return to MIDRANGE.COM home page

This mailing list archive is Copyright 1997-2024 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact [javascript protected email address].

Operating expenses for this site are earned using the Amazon Associate program and Google Adsense.