cancel
Showing results for 
Search instead for 
Did you mean: 

Desktop Sync SSL: peer not authenticated

djaevla2
Champ in-the-making
Champ in-the-making
Environment:
Client: Windows 7 64bit, Alfresco Desktop Sync 1.0.0.1 64bit
Server: Ubuntu Server 12.04, Tomcat 6, Alfresco 4.2.c; Access through Apache2.2 with mod_jk, SSL self signed CA-certificate (X.509)


°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°

Hi,

I'm using the Alfresco Community Edition and can access all services ssl-encrypted through Webbrowser (including the webdav-service). But when I want to sync with Alfresco Destkop Sync I'm able to connect through Apache with SSL disabled (port 80), but not whenn SSL enabled. In the logs appears an error:


13:25:53.703 INFO  AlfrescoSyncClient - ———-Alfresco Sync Started———-
13:25:53.718 DEBUG SyncManager - exceptions loaded: {^~.*=IGNORE, ^\..*=IGNORE, Microsoft User Data=IGNORE, ^.*\.(iso|exe|app|tmp|TMP)$=IGNORE, Thumbs.db=IGNORE, About Stacks.lpdf=IGNORE}
13:26:11.984 DEBUG RemoteFileStore - Cloud: Test Connection
13:26:13.843 ERROR RemoteFileStore - Cannot connect to webdav [https://mydomain.de/alfresco/]
13:26:13.843 ERROR RemoteFileStore - javax.net.ssl.SSLPeerUnverifiedException: peer not authenticated
13:26:13.843 ERROR RemoteFileStore - Cloud: Invalid credentials
13:26:39.015 INFO  SystemTrayIcon - ———-Alfresco Sync Quit———-


This is an problem with Apache http client (see here: <a>http://javaskeleton.blogspot.de/2010/07/avoiding-peer-not-authenticated-with.html</a>). One soultion from google search results says, that I can import my CA-certificate to the trusted cacerts in JRE. So I tried to import it into


PATH:<ALFRESCO_SYNC_CLIENT>/runtime/jre/lib/security/cacerts


with the java keytool

keytool -import -alias customcacert -keystore cacerts -file myCAfile.cer


but I had no luck. Also I tried to import the Cacert into the systems JRE truststore, also no luck.

So my question is, are there a generic problem with self-signed certificates and the Alfresco Desktop Sync Client? How can I solve it?

Thanks for help…
1 REPLY 1

djaevla2
Champ in-the-making
Champ in-the-making
hello again,

I setup tomcat over SSL with my self-signed certificate on port 8443 and then Desktop Sync worked. So I think this is a problem with the ajp-connector (mod_jk in apache2). Has anybody an idea to solve this?

Thanks.