Web服务证书相关错误
我正在尝试编写一个 Web 服务客户端来通过 SSL 使用另一家公司提供的测试服务。我不是“精通证书”,所以我希望这只是我忽略的简单事情。我有三个“存储”:一个信任存储、一个用于消息签名的密钥存储和一个用于传输的密钥存储(如 Web 服务托管商提供的文档中所述)。当尝试访问该服务时,我收到以下错误:
javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path validation failed: java.security.cert.CertPathValidatorException: timestamp check failed
堆栈跟踪的底部是这样的:
java.security.cert.CertificateExpiredException: NotAfter: Wed Mar 16 19:59:59 EDT 2011
最后一条消息听起来像是在说证书已过期。我检查了这三个商店中的所有证书,没有一个已过期。那么此消息是否意味着服务器的证书已过期?或者我的配置有问题吗?
戴夫
I'm trying to write a webservice client to consume a test service provided by another company, over SSL. I'm not 'certificate savvy' so I'm hoping this is just something simple that I'm overlooking. I have three 'stores': one truststore, one keystore for message signing, and one keystore for transport (as outlined in the doc supplied by the webservice hoster). When trying to access the service, I'm getting the following error:
javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path validation failed: java.security.cert.CertPathValidatorException: timestamp check failed
and at the bottom of the stack trace is this:
java.security.cert.CertificateExpiredException: NotAfter: Wed Mar 16 19:59:59 EDT 2011
That last message sounds like it's saying that a cert is expired. I've checked every cert that I've got in the three stores and none of them are expired. So does this message mean that the server has an expired cert? Or have I got something configured screwy??
Dave
如果你对这篇内容有疑问,欢迎到本站社区发帖提问 参与讨论,获取更多帮助,或者扫码二维码加入 Web 技术交流群。
绑定邮箱获取回复消息
由于您还没有绑定你的真实邮箱,如果其他用户或者作者回复了您的评论,将不能在第一时间通知您!
发布评论
评论(1)
我通过将
System.setProperty("javax.net.debug", "all");添加到我的代码来验证问题是否与服务器证书有关。这样我就可以看到正在发送/接收的证书信息。服务器的证书已过期。 >:\I verified that the issue is with the server certificate by adding
System.setProperty("javax.net.debug", "all");to my code. That way I could see the certificate info that was being sent/received. The server's cert has expired. >:\