I am running Oracle Weblogic 11g (10.3.6) and am trying to configure two-way SSL (requesting and enforcing client certificate). The client certificate is located on the smart card.
I enabled the "base" ssl on the weblogic server and used keytool to import the corresponding CA root certificates into the DemoTruststore.jks file. I set the bi-directional client certificate behavior to the requested and forced client certificates for the server.
Unfortunately, trying to access my application causes the following:
<Certificate chain received from 127.0.0.1 - 127.0.0.1 was incomplete.>
<NO_CERTIFICATE alert was received from 127.0.0.1 - 127.0.0.1. Verify the SSL configuration has a proper SSL certificate chain and private key specified.>
<Certificate chain received from 127.0.0.1 - 127.0.0.1 was incomplete.>
The ActivClient dialog never appears to select a certificate with a Smart Card, and no contact is requested. Therefore, I think I have configured something incorrectly.
Help would be greatly appreciated.
Jason