I am trying to write a java application connecting to server connection channel with SSL enabled.
So far, I have been successfully connected to the channel by setting authentication to optional . However, when I set it to be required , the connection fails.
Here is what I did:
- Create key db for queue manager and keystore for the java client user.
- Create key/self-signed certificates for the queue manager and the client user, with names prefixed ibmwebspheremq.
- Export, exchange and import certificates for the queue manager and the client. (I did answered yes when being asked whether I trust the queue manager cert).
- The location and password to the truststore and keystore are set to point to the same keystore at the client side, where the orgininal created client user key and the imported queue manager key are.
With other settings being the same, if I switch back to optional authentication, the connection works.
I think there is something I understand incorrectly about this ssl authenticaion but cannot figure out what.
Could someone kindly help me?