Integration

Hi all.

I'm struggling with OHS certificate configuration. I've configured OHS to work with SSL and it worked fine, but when I set "SSLVerifyClient require" the nightmare begins.
I'll start from begining so you can tell me what I'm doing wrong. I'm using Oracle 10.2.0.4 with OHS also patched to 10.2.0.4.

- I've configured ssl.conf and opmn.xml as well, both pointing to the same wallet;
- Created the wallet as following:
Common Name: oracle -- the hostname is oracle
Organizational Unit: Support
Organization: Oracle
Location: NI
State: RJ
Country: Brazil
Key Size: 1024bits
Auto Login

- Exported the certificate request (request.csr);
- Created a CA (using openssl ssl.ca-0.1.tar.gz) - ./new-root-ca.sh
- Signed the request (using openssl ssl.ca-0.1.tar.gz) - ./sign-server-cert.sh request
- Imported the ca.crt (CA certificate) and request.crt (signed certificate) into my wallet
- Imported the ca.crt (CA certificate) into my browser

Already tried with Chrome, IE and Firefox, none of them is working. It always says I don't have the correct certificate on my browser side. What am I doing wrong or forgetting?

[22/Feb/2011 08:15:22 17175] [error] SSL call to NZ function nzos_Handshake failed with error (server oracle:4459, client 127.0.0.1)
[22/Feb/2011 08:15:22 17175] [error] Invalid X509 certificate chain [Hint: the client probably doesn't provide a valid client certificate]

Thank you,