I'm testing my pull-mode agent with the SIF Test Harness / Compliance Test. All works fine with HTTP, so now I'm trying HTTPS. I don't think I understand what I need in terms of .ks and .cert files. Do I need both? I created both and have the following code:
// Set HTTPS properties HttpsProperties https = agent.getDefaultHttpsProperties(); props.setTransportProtocol("https"); https.setKeyStore("certs/Agent.ks"); https.setKeyStorePassword("changeit"); https.setTrustStore("certs/Server.ks"); https.setTrustStorePassword("changeit"); https.setRequireClientAuth(false);
I roughly followed the instructions in the PDF "DevNote #102 – Testing HTTPS with the SIFWorks® Enterprise ZIS", although I'm not actually testing with the SIFWorks ZIS so some things are different. Should I be getting a certificate from SIFA? I wasn't totally sure what to enter for all the fields when going thru the keytool prompts. Does it have to match the SIF Harness certificate exactly?
When I run I get the following error:
2010-01-04 14:36:38 ERROR - Error initializing and starting agent - Could not establish a connection to the ZIS (https://COmPliaNcE.SIFInfO.oRg:8455?623064F2F3C111DE9AB7C02D8AF4AF10OC%78B%4441%24w%3A%39%00nGo%88K%cdR0M%f4%84Lz%68iH%3EXCog(%AA%F3-Kgj%44%8169*X%bfadZr%52%3FJ'%BA%2f(1pb%C9n%3B%24M%4cm!%3F%2BuC2VNS.%3f%79%D5%95%d1%69%3bwG'ti%2dH-%4cX~atiO%e4xk.%3A2%8B): javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target. RefId: null
Thanks for any clarification anyone can provide!
Miriam
Am interested to know the resolution!
Miriam,
I'm glad we had a chance to talk and resolve this at the SIF conference. We need to get better documentation on how to use HTTPS with the SIF Test Harness.
Cheers,
Andrew ElmhorstChief ArchitectEdustructures