Hi,

I've been trying to connect to a remote https server which demands a
client certificate for authentication. It works fine in SoapUI but can't
seem to get the driver to do authenticate.

I imported both the chain and key into a keystore and have tried them as
both trust and/or keystore but no combination seems to work. Is this
something that the driver can do or should I look into a transport layer
mod?

When it is only on the truststore I see a valid post but i get a 403
back.
When it is also or only as keystore i see a 'unable to retrieve key'.

[02/08/17 11:06:21.629]:MijnCaress ST:MijnCaress: Value of boolean flag
'remove-existing' is : false
[02/08/17 11:06:21.629]:MijnCaress ST:MijnCaress:
HTTPSubscriberTransport.send()
[02/08/17 11:06:21.629]:MijnCaress ST:MijnCaress: Preparing HTTP POST
connection to https://SOMESYSTEM:24835/soap/IinvUserManagement
[02/08/17 11:06:21.629]:MijnCaress ST:MijnCaress: Setting up SSL
connection..........
[02/08/17 11:06:21.630]:MijnCaress ST:MijnCaress: Restored
operation-data
[02/08/17 11:06:21.630]:MijnCaress ST:
<nds dtdversion="2.0">
<source>
<product build="20160728_1122" instance="MijnCaress"
version="4.0.0.4">Identity Manager Driver for SOAP</product>
<contact>NetIQ Corporation</contact>
</source>
<output>
<status level="error" type="app-connection">
<description>Cannot recover key</description>
</status>
</output>
</nds>

Anyone know if and how?

Regards,

Albert-Jan


--
ajstevens
------------------------------------------------------------------------
ajstevens's Profile: https://forums.netiq.com/member.php?userid=3153
View this thread: https://forums.netiq.com/showthread.php?t=57324