Any urgent guidance would be of much help.
I have a test case for a REST based webservice that I have created. The access to it is via an HTTPS port on the IS.
The port is functioning fine when set for username/pwd authentication but showing a problem when I am setting ‘require certificate’ authentication.
The following are the steps I have taken for configuring the client/server side keys,keystore and truststore. The SOAP UI is currently installed on the same host as the IS.
- I created a keystore for the SOAPUI client, with a key pair and exported a self-signed certificate from this key to the local drive.
- Similarly I created a separate keystore for webm IS 9.5 and a key pair and got a self-signed certificate exported from it.
- I imported the server’s self signed certificate in the client keystore and vice-versa.
- I also configured the keystore and truststore alias, but both pointing to keystore.
5.I imported the client certificate in Certificates->configure Client certificates section from the local drive only. I first tried with .cer and then .der formats. Also, mapped a user with the certifcate import.
But I am still getting bad certificate error. Earlier I had configured both SOAP UI and server keystore as the same ones when I wasnt much aware of the concepts of public-private key pairs, and it had worked.
But later I realised it has to be separate ones for each client n server.SO,followed the above steps, but of no avaial.
AM new to port config (https) and certificate handing, can somebdy pls help me?
Is there any role of CA certificates during testing?Pls let me know what could I do to make this work