Important Notice: Our web hosting provider recently started charging us for additional visits, which was unexpected. In response, we're seeking donations. Depending on the situation, we may explore different monetization options for our Community and Expert Contributors. It's crucial to provide more returns for their expertise and offer more Expert Validated Answers or AI Validated Answers. Learn more about our hosting issue here.

What does javax.net.ssl.SSLHandshakeException: com.ibm.jsse2.util.g: End user tried to act as a CA mean?

ACT ca javax.net.ssl.sslhandshakeexception mean user
0
Posted

What does javax.net.ssl.SSLHandshakeException: com.ibm.jsse2.util.g: End user tried to act as a CA mean?

0 CommentsAdd a Comment

1 Answer

0

This error occurs when a handshake is done and the CA certificate used for authentication does not have the basicConstraints extension turned on in the CA certificate. In general, when you create certificates you must be sure to turn on the CA basicConstraints extension. In RACF be sure to create the CA certificate with the syntax RACDCERT CERTAUTH …. so that basicConstraints extension is included with the CA parameter set to true and the PathLen parameter set to some non-zero value appropriate for the certificate chain.

0 CommentsAdd a Comment

Related Questions

What is your question?

*Sadly, we had to bring back ads too. Hopefully more targeted.

Experts123