I am attempting to setup SoapUI for connection to an endpoint over SSL that requires client authentication.
There are SSL properties which can be set via preferences->ssl settings. I have set this to point to my JKS keystore with the correct password. I can see a message in the logs indicating no error.
In the 'Security Configurations'-> 'Keystores/Certificates' on the project properties, I have added the keystore. The status is OK. This allows me to select a keystore on Request Properties -> SSL Keystore property which I set to my keystore.
After doing all of this, when I execute the request, I get a 403 error "Client certificate required" and there is only 1 certificate in the response (being from the server). No certificate from my keystore is presented.
The certificates come from an application running on Websphere which can successfully communicate with the endpoint in question.
Any help in resolving this issue would be much appreciated.
Configure for SSL client authentication
5 posts
• Page 1 of 1
Configure for SSL client authentication
by monolith » 05 Aug 2009 04:18
- monolith
- User
- Posts: 1
- Joined: 05 Aug 2009 03:46
Re: Configure for SSL client authentication
by benjacar » 06 Aug 2009 10:40
Hi,
I am also interested in this one.
I have done the same thing, configuring Keystores/Certificates successfully in the project properties - status OK
I have then set the SSL keystore in the request properties
I am however getting a 401 error - 10.4.2 401 Unauthorized
How can we see in soapUI whether the certificate has been sent or not?
Also, what are the SSL Settings in the soapUI Preferences for? If you need to set the keystore at project level.
Thanks
Arnaud
I am also interested in this one.
I have done the same thing, configuring Keystores/Certificates successfully in the project properties - status OK
I have then set the SSL keystore in the request properties
I am however getting a 401 error - 10.4.2 401 Unauthorized
How can we see in soapUI whether the certificate has been sent or not?
Also, what are the SSL Settings in the soapUI Preferences for? If you need to set the keystore at project level.
Thanks
Arnaud
- benjacar
- soapui pro users
- Posts: 3
- Joined: 31 Jul 2009 17:22
Re: Configure for SSL client authentication
by benjacar » 06 Aug 2009 11:00
Hi again,
Just realised through the doc http://www.soapui.org/userguide/projects/wss.html#Keystores that this configuration is not for Transport Level Security (TLS) but only for Web Services Security
So we are back to square one and your original question monolith.
How to configure SSL on soapUI for an endpoint requiring client authentication?
Well, not the way we did it.
Is it through the SSL settings in the soapUI preferences?
I have sent the following post http://www.eviware.com/forums/index.php?topic=2158.0 last Friday but no response as yet.
Arnaud
Just realised through the doc http://www.soapui.org/userguide/projects/wss.html#Keystores that this configuration is not for Transport Level Security (TLS) but only for Web Services Security
So we are back to square one and your original question monolith.
How to configure SSL on soapUI for an endpoint requiring client authentication?
Well, not the way we did it.
Is it through the SSL settings in the soapUI preferences?
I have sent the following post http://www.eviware.com/forums/index.php?topic=2158.0 last Friday but no response as yet.
Arnaud
- benjacar
- soapui pro users
- Posts: 3
- Joined: 31 Jul 2009 17:22
Re: Configure for SSL client authentication
by selkind » 22 Aug 2009 01:18
I'm also trying to figure out how to configure using a client cert - but with a RESTful service.
I also tried setting at the project level the keystore and client cert - security configurations -> keystores/certs -> and the keystore source, password, key alias, and key password. This gives me a status of "OK". When I try to test the request, I get a 401 Unauthorized. Before I tear my hair out on the server side, is there some way to verify that the client cert is actually being used successfully?
I only see the server side cert in the SSL Info pane, I'm not sure if I should also be seeing the client cert.
oh, yes v2.5.1
I also tried setting at the project level the keystore and client cert - security configurations -> keystores/certs -> and the keystore source, password, key alias, and key password. This gives me a status of "OK". When I try to test the request, I get a 401 Unauthorized. Before I tear my hair out on the server side, is there some way to verify that the client cert is actually being used successfully?
I only see the server side cert in the SSL Info pane, I'm not sure if I should also be seeing the client cert.
oh, yes v2.5.1
- selkind
- User
- Posts: 9
- Joined: 10 Jul 2009 20:01
Re: Configure for SSL client authentication
by lwilsonnexj » 26 Nov 2011 00:49
I'm also having this problem...does anyone have a solution?
- lwilsonnexj
- User
- Posts: 1
- Joined: 26 Nov 2011 00:31
5 posts
• Page 1 of 1