WebCache Client Side Certificate Required Fails With Error in Event Log "SSL handshake fails SSL-28864" (Doc ID 2244346.1)

Last updated on MARCH 15, 2017

Applies to:

Web Cache - Version 11.1.1.9.0 and later
Information in this document applies to any platform.

Symptoms

On :  Web Cache 11.1.1.9.0

Configure WebCache to Require Client Side Certificates.
Configured Two-Way SSL for WebCache Configured for TWO-Way SSL - Site to Server Mapping 7789 --> 4443
Browser returns status 400 page 

OHS captures the following error in INSTANCE_HOME/logs/OHS/ohs1/ohs1.log

 

 
The issue can be reproduced at will with the following steps:

1. Log in to WebCache Admin Console
      ex: http://hostname:port/webcacheadmin

2. Click on Listen Ports

3. Select the SSL Listen port and edit the selected port changing Client-Side Certificate: to be Required

4. Apply the changes

5. Restart WebCache

Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms