How to configure SoapUI with client certificate authentication
2011-11-18 15:50
1116 查看
How to configure SoapUI with client certificate authentication
(A document from Gerard van der Maaden)
SoapUI is one of the best free tools around to test web services. Some time ago I was trying to send a soap message towards a SSL web service that was set up for client certificate authentication. I pretty soon got stuck at the “javax.net.ssl.SSLException: HelloRequest followed by an unexpected handshake message” error, but after reading several posts on the internet I solved that issue. It’s not really that complicated after all, but since I could not find a decent place on the internet that explains this scenario in a proper way, here’s a list of steps that you need to do to make it work.
Note: this following steps are based on a Windows environment
Step one:
Export your certificate (the one that you want to use as the client certificate) using the export wizard with the private key and with all certificates in the certification path:
Give it a password (anything you want):
And export it as a PFX file to a location somewhere on disk:
Step two:
Install the newest version of SOAP UI (currently it is 3.6.1)
Open the file C:\Program Files\eviware\soapUI-3.6.1\bin\ soapUI-3.6.1.vmoptions and add this line at the bottom:
-Dsun.security.ssl.allowUnsafeRenegotiation=true
This is needed because of a JAVA security feature in their newest frameworks (For further reading about this issue, read this: http://www.soapui.org/forum/viewtopic.php?t=4089 and this: http://java.sun.com/javase/javaseforbusiness/docs/TLSReadme.html).
Open SOAPUI and go to preferences>SSL Settings and configure your certificate in the keystore (use the same password as in step one):
That should be it. Just create a new project and import the WSDL from the client authenticated SSL webservice:
And now you should be able to send soap messages with client certificate authentication.
The above steps worked for me, but please drop a note if it does not work for you.
(A document from Gerard van der Maaden)
SoapUI is one of the best free tools around to test web services. Some time ago I was trying to send a soap message towards a SSL web service that was set up for client certificate authentication. I pretty soon got stuck at the “javax.net.ssl.SSLException: HelloRequest followed by an unexpected handshake message” error, but after reading several posts on the internet I solved that issue. It’s not really that complicated after all, but since I could not find a decent place on the internet that explains this scenario in a proper way, here’s a list of steps that you need to do to make it work.
Note: this following steps are based on a Windows environment
Step one:
Export your certificate (the one that you want to use as the client certificate) using the export wizard with the private key and with all certificates in the certification path:
Give it a password (anything you want):
And export it as a PFX file to a location somewhere on disk:
Step two:
Install the newest version of SOAP UI (currently it is 3.6.1)
Open the file C:\Program Files\eviware\soapUI-3.6.1\bin\ soapUI-3.6.1.vmoptions and add this line at the bottom:
-Dsun.security.ssl.allowUnsafeRenegotiation=true
This is needed because of a JAVA security feature in their newest frameworks (For further reading about this issue, read this: http://www.soapui.org/forum/viewtopic.php?t=4089 and this: http://java.sun.com/javase/javaseforbusiness/docs/TLSReadme.html).
Open SOAPUI and go to preferences>SSL Settings and configure your certificate in the keystore (use the same password as in step one):
That should be it. Just create a new project and import the WSDL from the client authenticated SSL webservice:
And now you should be able to send soap messages with client certificate authentication.
The above steps worked for me, but please drop a note if it does not work for you.
相关文章推荐
- How to set up tomcat with server authentication and client certificate authentication enabled
- How to connect a NFS server with the the VM machines via Vcenter client?
- How to configure and use Git with visual studio 2012 and TFS
- 转载---How To Set Up A USB-Over-IP Server And Client With Ubuntu 10.04
- How to configure an NTP client and server on CentOS/RedHat
- How to configure IPMI to work with Oracle RAC
- How to configure a CA to accept a SAN attribute from a certificate request
- How to configure OID Authentication in Weblogic
- How to properly image a computer with NS Client (Altiris Agent) installed
- How To Set Up A USB-Over-IP Server And Client With Ubuntu 10.04
- How to configure local_listener parameter with ASMCA [ID 1112993.1]
- How to configure the nifi user authentication ?
- How To Create GenericPrincipal Objects with Forms Authentication(转MSDN)
- How to use a 32bit Oracle11_g client in 64 win system and not conflict with sqldeveloper 64 bit tool
- How To Install and Configure Django with Postgres, Nginx, and Gunicorn
- How to configure a mail client for Hotmail POP3?
- How to configure XDB for using ftp and http protocols with ASM [ID 357714.1]
- How To Set Up Apache with a Free Signed SSL Certificate on a VPS
- How To Configure Elasticsearch on Hadoop with HDP
- How to configure Virtual Network Computing (VNC) to work with Red Hat Enterprise Linux?