Layer 7: handshake alert: unrecognized_name

Posted on December 7, 2012 by Jianming Li

Contents

  1. Overview
  2. Error Messages
  3. Possible Cause
  4. Resolution 1: Server side
  5. Resolution 2: Client side
  6. Reference
 

Overview

* Error happened when consuming web services exposed via Layer 7 over HTTPS.
* Layer 7 communicates with backend web service also via HTTPS.
* Layer 7 log indicated SSL handshake error with backend web service.

Error Messages

* Web Service client log: Policy Falsified
* Layer 7 log: handshake alert: unrecognized_name

Possible Cause

* JDK 7 now include requested server name in SSL handshake message, backend Apache server configuration (httpd.conf) was missing ServerName attribute in SSL virtual host configuration.

Resolution 1: Server side

* Add ServerName attribute to Apache httpd.conf file

<VirtualHost my.com:443>
  ServerName my.com
  ...

Resolution 2: Client side

* Switch from JDK7 to JDK6.

Reference

* 7127374 : JSSE creates SSLProtocolException on (common) warning: unrecognized_name for SNI
* SSL handshake alert: unrecognized_name error since upgrade to Java 1.7.0

This entry was posted in apache, errors, jboss, layer7 and tagged , , , . Bookmark the permalink.

One Response to Layer 7: handshake alert: unrecognized_name

Leave a Reply

Your email address will not be published. Required fields are marked *

CAPTCHA

*

This site uses Akismet to reduce spam. Learn how your comment data is processed.