WebSphere Application Server supports Java client authentication
using a digital certificate when the client attempts to make a Secure Sockets
Layer (SSL) connection. The authentication occurs during an SSL handshake.
The SSL handshake is a series of messages that are exchanged over the SSL
protocol to negotiate for connection-specific protection. During the handshake,
the secure server requests that the client send back a certificate or certificate
chain for the authentication.
Before you begin
To configure SSL for Java client authentication, consider the following
questions:
If you answer yes to all of these questions that are appropriate to your
product and platform, you can configure SSL for Java client authentication.
About this task
Procedure
- Editing the sas.client.props file for Secure Sockets Layer client authentication.
- Adding keystore files.
- Adding truststore files.
- Save changes.
- Restart the server if you configured the server.
What to do next
A secure client connects to a secure Internet Inter-ORB Protocol
(IIOP) server that requires client authentication at the transport layer.
If a connection problem occurs, you can set the
javax.net.debug=true Java
property before you run your client or your server to generate debugging information.
See
Troubleshooting security configurations for
further information about how to debug an IBMJSSE problem.