Error 403

Having spoken to India on 2 occasions re error 403.. this occurs when i use the BT search bar,, say for "Argos" error 403 comes up.. if i make any search same error comes up.. i can access all sites using differnet web browser... on both occasions India said it was a fault at Bt and should be sorted soon... still waiting any suggestions... have complained to Bt twice now re this still no solution from them

There are a few people reporting this.
https://community.bt.com/t5/Other-Broadband-Queries/error-403-searching-the-internet-from-bt-com-hom...
Why not use the google search https://www.google.co.uk/ until/if the problem is resolved.

Similar Messages

Error message when trying to sign in to HP ePrint "ajax submit failed: error = 403, forbidden"

HP Photosmart 7525
Windows 7
Ajax submit failed: error = 403, Forbidden
Installed new printer: Photosmart 7525
I am trying to set up my ePrint account and add my printer and it won't let me sign in or create a new account.
Thanks for your help!
Deb
This question was solved.
View Solution.

One can also restart the computer.After it shuts down leave it off for at least a minute and then reattempt access the site once computer is back on and running. I would also check to make sure that Java is up to date and that Adobe Flash is up to date.
I am a former employee of HP...
How do I give Kudos?| How do I mark a post as Solved?

Website on Mac Mini Server not accessible. Error 403 index document not available.

Dear all,
I'm trying to host a website on my Mac Mini Server. As far as I can see, my DNS is working correctly. Also my firewall is setup correctly. (I'm hosting another website which works OK). But I setup a new site. Basically a copy of the working site. But this site doesn't reflect an index.htm page. I receive an Error 403 with further information that there is no index document or that the site is secured. There is a contact link on this page directing to my webmaster. So I conclude that something is working, but no index.htm page. Has anyone similar experience? And offcourse a solution?
Many thanks.

Launch Terminal.app and issue the commands:
cd /Library/Webserver/Documents/
ls -al
And see if the files are readable by the web server. Here's an example index file listing that's owned by root and with group access for admin folks, and this file is marked as readable and writable for the owner and the group, and is readable for everybody else:
-rw-rw-r-- 1 root admin 5094 Jul 25 2009 index.html
In this configuration, the web server would be using the other access; the web server can read this file, but not write to it. Here is how to duplicate these ownership and access settings on your own index.html file, assuming that you have that file present in the ls listing above, and assuming that you have issued the cd (change default directory) command shown above:
sudo chown root:admin index.html
sudo chmod ug=rw,o=r index.html
You will need to enter your administrative password for the sudo command.
I would very strongly suggest that you start learning some basics of bash and of Apache, because you're going to be needing those skills very soon.

Server Error 403 - Forbidden: Access is denied. You do not have permission to view this directory or page using the credentials that you supplied.

Hi,
I`d like to get your advice on Server Error 403 - Forbidden: Access is denied. I use to visit a webpage with no issues so far but now i getting this error each time i`m trying to get into. Any ideas in how to solve it? A step to step process will be highly appreciated.
Thanks.
PS, I`m using the latest safari 8.0.3 and OS X 10.10.2.

It's an error message from the web server, not from Safari. There's a slight chance that you might be able to clear it as follows.
From the Safari menu bar, select
Safari ▹ Preferences... ▹ Privacy ▹ Remove All Website Data...
and confirm. Test.

I tried to access my website, but Firefox threw the error: 403 Forbidden, you don't have the permissions to view.

My website - Mousenstein.com - is under construction w/Dreamweaver + Flash.
I uploaded my files to my server.
I opened Firefox and entered the URL:
http://www.mousenstein.com
The error "403 Forbidden" appeared, and ...
You do not have the permissions to access.
I have tried to upload my site countless times, but never successfully - it is a huge headache. That said, I have never gotten the "403 Forbidden - no permissions" before.
All other failures threw the error "404, can not locate the URL "/" on this server.
Any help will be enormously appreciated.
P.S. : Are there permissions preferences on Firefox? I found one under Tools Menu, but it didn't seem to address my problem.
Thanks

I get the same thing with Firefox, IE8, Opera, and Safari. It isn't a Firefox only problem.
Are you new to that webhosting service? <br /> Have you ever uploaded web pages to that same web hosting service previously, pages that worked after an upload? <br /> Are those pages listed as ''' "public" ''' pages in your web hosts control panel?
My suggestion is to "download" your homepage and associated files & images from your PC, up to the server, using your web hosts control panel and see how that works.
Beyond that, I suspect that you might have missed an important setting in Dreanweaver for uploading to the web host's server. You might try asking about this issue at a Dreamweaver support forum.

HTTP Error 403.16 - Forbidden, Your client certificate is either not trusted or is invalid.

Dear Experts,
I have tried mutual authentication with sample website as per below link:
http://itq.nl/testing-with-client-certificate-authentication-in-a-development-environment-on-iis-8-5/#comment-19427
1. Created a Root certificate, client and server certificate based on this root certificate by using Makecert command as per below link:
2. Import these certificates in Trusted Root Certification authority of both the stores (Local and Current user)
3. Created a sample website with HTML page
4.Hosted this website in IIS with HTTPS binding and selected the above server certifcate
5. Enabled "Require SSL" and selected "Require" under SSL settings of website
6. Exported the client certificate in base64 format --> Edited in notepad --> made the key into single line
7. Placed the above key under Configuration editor --> system.webServer/security/authentication/iisClientCertificateMappingAuthentication --> one to one mapping with user credentials.
8. I tried to access the website
But, I ended with below error :(
HTTP Error 403.16 - Forbidden
Your client certificate is either not trusted or is invalid.
Detailed Error Information:
Module    IIS Web Core
Notification    BeginRequest
Handler    ExtensionlessUrlHandler-Integrated-4.0
Error Code    0x800b0109
Requested URL    https://localhost:443/
Physical Path    E:\SampleRoot
Logon Method    Not yet determined
Logon User    Not yet determined
Could you please let me know what I missed here.
Note:
I am using windows8, IIS8.0.
Thanks in advance.
Regards,
M. Prasad Reddy.

Hi Prasad,
As per this case, I have been shared the corresponding details below
1.First of all,make sure that you import the certificate whether it belongs to Trusted RootCertification or not .
    If that is the case ,Goto Microsoft Management Console (MMC), open the Certificates snap-in.
    For instance, the certificate store that WCF is configured to retrieve X.509 certificates from, select the Trusted RootCertification Authoritiesfolder. Under the Trusted Root Certification Authorities folder, right-click the Certificatesfolder,
point to All Tasks, and then click Import.
2.you configured the server certificate as well, But check the client certificate whether have root certificate or not by following command?
makecert -pe -n "CN=SSLClientAuthClient"
         -eku 1.3.6.1.5.5.7.3.2 -is root -ir localmachine -in WebSSLTestRoot
         -ss my -sr currentuser -len 2048
3. Also check the Service Certificate whether its configured on the WCF Service side
4.Make sure that you followed all the steps are done correctly from your given referred link below
http://itq.nl/testing-with-client-certificate-authentication-in-a-development-environment-on-iis-8-5/#comment-19427
5.Besides, please try to set the require SSL as ignore to see if you can access the website.
If the above details cannot able to resolve this issue, please post your config file here.

Error 403 when I try to connect to iCloud

I recently bought a used iphone 4 (iOS 7.0.4) and when I try to connect this iphone to icloud with my apple username and password, I get an error 403 (I haven't got any icloud account before). When I try to create a new icloud account, It tells me that it's impossible and that this iphone is not more allowed to create a icloud free account. How can I do to create a new icloud account?
thanks

They told me that my Iphone has reached the maximum number of iCloud accounts creations, 3 as you wrote. But I spoke to a very kind guy from the Apple assistance and after two long calls for trying to find wherefrom my problem was, he contacted Apple engineers and they allowed me to create one more icloud account with my iphone.
So, for others who got this 403 error, it means that your ID is an Apple ID but not An iCloud ID and that you cannot create a iCloud account ... unless if you phone them maybe.
Many thanks to Apple assistance.

Can't sign up for eprintcenter-I get this error ---Ajax submit failed: error = 403, Forbidden

Bought my 6700 printer yesterday. Set it all up, prints fine. Got the print out that tells me to go to the eprintcenter.com and "sign up and enter your printer code."
Every time I enter any information, I get this error code: Ajax submit failed: error = 403, Forbidden
I've tried entering my personal email, the eprint email--in short I've tried everything and can't register for an account so I can customize my printer email address, etc. Can some one help?

Tifmel,
I do apologize that you are having this issue. If you are still having this issue, I would suggest using a different web browser (i.e. internet explorer, google chrome, mozilla firefox). There are more that are available but those are just a few examples. I sure hope you can get everything worked out. Thanks again!!!!
Feel free to repost if you have any further questions, comments, or concerns.
If I have SOLVED your issue, please feel free to provide KUDOS and make sure you mark this thread as SOLUTION PROVIDED!
Although I work for HP, my posts and replies are my own opinion and not those of HP.

All free/busy requests get error 403 in iCal with MobileMe

I'm playing for the first time with looking with my availability in iCal / Lion / MobileMe CalDAV accounts.
Everything else is working well with my calendars and Mobile Me.
I can add events, remove them, edit them, the sync is working well between the web interface and iCal on my Mac (10.7)
The only thing amiss is the availability window just logs an error to the console after a short time out.
It's error 403 which seems to be a permission denied error.
Do I need to grant permission for MobileMe to publish my free/busy status anywhere?
It it locked down until I allow sharing?
Is it tied to sharing a calendar some how?
Just sending a call out to others in case I'm missing something obvious. There are instances of this error on the boards with iCal and 10.6.6. so I presume it's more a server setup / service interruption than something I can change.
Thanks for any input - even if it's a "it works for me right now" or "I too can't get mobile me status in iCal"
(p.s. Mobile Me support says they can't help - talk with iCal people.)
(p.s. After two hours on the phone with iCal - it's back to the MobileMe people to try again. I figured I'd give a shout here before I try them again...)
Here's the error message from /private/var/log/system.log
7/27/11 12:48:30.780 PM          iCal          Error Error Domain=CoreDAVHTTPStatusErrorDomain Code=403 "The operation couldn’t be completed. (CoreDAVHTTPStatusErrorDomain error 403.)" UserInfo=0x7fd30cbbe3d0 {CoreDAVHTTPHeaders=<CFBasicHash 0x10300c1e0 [0x7fff7dbf7ea0]>{type = immutable dict, count = 7,
entries =>
          0 : <CFString 0x7fff7c240c18 [0x7fff7dbf7ea0]>{contents = "Server"} = <CFString 0x7fd30cabf370 [0x7fff7dbf7ea0]>{contents = "MobileMeCalendarServer 1C97"}
          2 : <CFString 0x7fd30cd8acb0 [0x7fff7dbf7ea0]>{contents = "DAV"} = <CFString 0x7fd30cb97840 [0x7fff7dbf7ea0]>{contents = "1, access-control, calendar-access, calendar-schedule, calendar-auto-schedule, calendarserver-sharing, calendarserver-subscribed, calendarserver-principal-property-search"}
          3 : <CFString 0x7fff7c240780 [0x7fff7dbf7ea0]>{contents = "Content-Type"} = <CFString 0x7fff7dbf1640 [0x7fff7dbf7ea0]>{contents = "text/xml"}
          4 : <CFString 0x7fff7c2407b8 [0x7fff7dbf7ea0]>{contents = "Date"} = <CFString 0x7fd30cbd9810 [0x7fff7dbf7ea0]>{contents = "Wed, 27 Jul 2011 17:48:30 GMT"}
          6 : <CFString 0x7fff7c240710 [0x7fff7dbf7ea0]>{contents = "Content-Length"} = <CFString 0x7fff7dbebe80 [0x7fff7dbf7ea0]>{contents = "280"}
          8 : <CFString 0x7fd30cd636e0 [0x7fff7dbf7ea0]>{contents = "X-Transaction-Id"} = <CFString 0x7fd30cbd7060 [0x7fff7dbf7ea0]>{contents = "nk11r10me-calsvr003-10-1311293226-3551930"}
          9 : <CFString 0x7fd30cab2b10 [0x7fff7dbf7ea0]>{contents = "X-Responding-Server"} = <CFString 0x7fd30cdeda10 [0x7fff7dbf7ea0]>{contents = "nk11r10me-calsvr003 10"}
} getting free-busy information for (
    "mailto:[email protected]",
    "mailto:[email protected]"

I have a similar issue. My girlfriend is using a yahoo address and for the life of me I cannot send her an iCal invite from my me.com or mac.com address. It never shows up in her email, not in inbox, not in junk, not deleted. I get an exclamation point on her name in the iCal invite. I can send her invites from Gmail. I created a test account on yahoo and I can send invites to that test account.
Of course I can email her just fine. I can open the invite in iCal, select the down arrow on her name and select "send email" that works just fine. I try to "invite again" and nothing... this is maddening
I've deleted iCal cache, deleted her contact, tried just using her smtp yahoo address, i don't have this issue with anyone else that I know of...

Power BI analysis services connector - the remote server returned an error (403)

Hi all, does any one have any suggestions what to try to identify the configuration problem I have?
I have, a SSAS 2012 tabular instance with SP2, there is a database on the instance with a read role with everyone assigned permissions.
When configuring the Power BI analysis services connector, at the point where you enter Friendly Name, Description and Friendly error message, when you click next I receive the error "The remote server returned an error (403)."
I've tested connecting to the database from Excel on a desktop and connect fine.
I don't use a "onmicrosoft" account so don't have that problem to deal with.
We use Power BI Pro with our Office 365. As far as I can tell that part is working ok as I pass that stage of the configuration with a message saying connected to Power BI.
The connector is installed on the same server as tabular services, its a Win2012 Standard server. The tabular instance is running a domain account that is the admin account for the instance (this is a dev environment) that account is what I've used in the
connector configuration. It's also a local admin account. There is no gateway installed on the server.
Any help would be greatly appreciated, thanks, Brian
Brian Searle

Brian-
One other common issue I've seen is the UPN not quite matching. Log onto the SSAS server as the user who's logged into Power BI. Then open a command prompt and run:
whoami /upn
Hopefully the UPN it says will match your EffectiveUserName test and will match exactly how you're signing into the Power BI site.
If that doesn't work, your best bet is to go to
http://support.powerbi.com/ and click Contact Support and describe this situation and someone from the Power BI support team should get in touch with you to troubleshoot.
http://artisconsulting.com/Blogs/GregGalloway

Getting "Error 403--Forbidden" while accessing ADF bookmarked URL

Hi,
Here am trying to work with an ADF application to suport bookmarking.
Following are the steps I did to create a sample application.
Created a bounded task-flow (user-details.xml), which has the "Method call" as default activity along with an another view activity(userData.jsff page).
This task-flow takes an input parameter "Id" to display user details. In the method call activity user data will be initialized using the given input parameter and then the data will be displayed using userData.jsff page.
Created a view activity (details.jspx page) in adfc-config.xml file.
Marked the "details.jspx" file as bookmark-able by changing "Bookmark property to true" and given a Bookmark URL Parameter "Name is Id and Value is #{pageFlowScope.user_id}".
Dropped the bounded task-flow user-details.xml as a region into the details.jspx file.
Now the user_id which is coming as URL Parameter will be passed to user-details.xml task-flows input parameter value.
Created users.jspx page which lists all the users as home page. In the users.jspx page we'll have a link to user details page with a parameter Id.
By running the application will get users page. When I click on the user details link in the users page, the app showing user details page as expected.
Now I bookmarked the user details page. If I open the bookmarked page in the same tab, it is working fine. But when I open this bookmark in a new tab getting the "Error 403--Forbidden" response.
Bookmarked URL: localhost:7101/BookmarkTestApp-ViewController-context-root/faces/user_details?id=123&_afrWindowMode=0&_afrLoop=4884151149818&_adf.ctrl-state=35yghmx4f_18
When I click the above bookmark in another tab the url is processing for few seconds ( 2 to 3 seconds) and converts to localhost:7101/BookmarkTestApp-ViewController-context-root/ and giving 403 response. At this time it is not touching my beans at all (verified this by running the server in debug mode).
Web.xml looks like:
<?xml version = '1.0' encoding = 'windows-1252'?>
<web-app xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
         xsi:schemaLocation="http://java.sun.com/xml/ns/javaee http://java.sun.com/xml/ns/javaee/web-app_2_5.xsd"
         version="2.5" xmlns="http://java.sun.com/xml/ns/javaee">
<context-param>
    <param-name>javax.faces.STATE_SAVING_METHOD</param-name>
    <param-value>client</param-value>
</context-param>
<context-param>
    <description>If this parameter is true, there will be an automatic check of the modification date of your JSPs, and saved state will be discarded when JSP's change. It will also automatically check if your skinning css files have changed without you having to restart the server. This makes development easier, but adds overhead. For this reason this parameter should be set to false when your application is deployed.</description>
    <param-name>org.apache.myfaces.trinidad.CHECK_FILE_MODIFICATION</param-name>
    <param-value>false</param-value>
</context-param>
<context-param>
    <description>Whether the 'Generated by...' comment at the bottom of ADF Faces HTML pages should contain version number information.</description>
    <param-name>oracle.adf.view.rich.versionString.HIDDEN</param-name>
    <param-value>true</param-value>
</context-param>
<filter>
    <filter-name>trinidad</filter-name>
    <filter-class>org.apache.myfaces.trinidad.webapp.TrinidadFilter</filter-class>
</filter>
<filter>
    <filter-name>adfBindings</filter-name>
    <filter-class>oracle.adf.model.servlet.ADFBindingFilter</filter-class>
</filter>
<filter-mapping>
    <filter-name>trinidad</filter-name>
    <servlet-name>Faces Servlet</servlet-name>
    <dispatcher>FORWARD</dispatcher>
    <dispatcher>REQUEST</dispatcher>
</filter-mapping>
<filter-mapping>
    <filter-name>adfBindings</filter-name>
    <servlet-name>Faces Servlet</servlet-name>
    <dispatcher>FORWARD</dispatcher>
    <dispatcher>REQUEST</dispatcher>
</filter-mapping>
<listener>
    <listener-class>oracle.adf.mbean.share.config.ADFConfigLifeCycleCallBack</listener-class>
</listener>
<servlet>
    <servlet-name>Faces Servlet</servlet-name>
    <servlet-class>javax.faces.webapp.FacesServlet</servlet-class>
    <load-on-startup>1</load-on-startup>
</servlet>
<servlet>
    <servlet-name>resources</servlet-name>
    <servlet-class>org.apache.myfaces.trinidad.webapp.ResourceServlet</servlet-class>
</servlet>
<servlet>
    <servlet-name>BIGRAPHSERVLET</servlet-name>
    <servlet-class>oracle.adfinternal.view.faces.bi.renderkit.graph.GraphServlet</servlet-class>
</servlet>
<servlet>
    <servlet-name>BIGAUGESERVLET</servlet-name>
    <servlet-class>oracle.adfinternal.view.faces.bi.renderkit.gauge.GaugeServlet</servlet-class>
</servlet>
<servlet>
    <servlet-name>MapProxyServlet</servlet-name>
    <servlet-class>oracle.adfinternal.view.faces.bi.renderkit.geoMap.servlet.MapProxyServlet</servlet-class>
</servlet>
<servlet>
    <servlet-name>GatewayServlet</servlet-name>
    <servlet-class>oracle.adfinternal.view.faces.bi.renderkit.graph.FlashBridgeServlet</servlet-class>
</servlet>
<servlet-mapping>
    <servlet-name>Faces Servlet</servlet-name>
    <url-pattern>/faces/*</url-pattern>
</servlet-mapping>
<servlet-mapping>
    <servlet-name>resources</servlet-name>
    <url-pattern>/adf/*</url-pattern>
</servlet-mapping>
<servlet-mapping>
    <servlet-name>resources</servlet-name>
    <url-pattern>/afr/*</url-pattern>
</servlet-mapping>
<servlet-mapping>
    <servlet-name>BIGRAPHSERVLET</servlet-name>
    <url-pattern>/servlet/GraphServlet/*</url-pattern>
</servlet-mapping>
<servlet-mapping>
    <servlet-name>BIGAUGESERVLET</servlet-name>
    <url-pattern>/servlet/GaugeServlet/*</url-pattern>
</servlet-mapping>
<servlet-mapping>
    <servlet-name>MapProxyServlet</servlet-name>
    <url-pattern>/mapproxy/*</url-pattern>
</servlet-mapping>
<servlet-mapping>
    <servlet-name>resources</servlet-name>
    <url-pattern>/bi/*</url-pattern>
</servlet-mapping>
<servlet-mapping>
    <servlet-name>GatewayServlet</servlet-name>
    <url-pattern>/flashbridge/*</url-pattern>
</servlet-mapping>
<mime-mapping>
    <extension>swf</extension>
    <mime-type>application/x-shockwave-flash</mime-type>
</mime-mapping>
<jsp-config>
    <jsp-property-group>
      <url-pattern>*.jsff</url-pattern>
      <is-xml>true</is-xml>
    </jsp-property-group>
</jsp-config>
</web-app>
Am I missing any thing here.
Thanks in advance.
-Gopal.

https://blogs.oracle.com/DavidGiammona/entry/why_do_i_get_this_error_403_--

Error 403 Reported when trying to access web page through a program.

I was writing a program for fun, to try to download a web page, pdf or anything from the web. The program works fine when given local file system path in URL and also works well when i tried to access a page from the tomcat installed on my machine but gives a error 403 when tried to access URL's outside the system. Tried to read about 403, seems that many sites does not allow to access a particular URL directly using the directory structure, you have to pass thru different hyperlinks before reaching resource.
IS THERE ANY WAY THIS PROBLEM CAN BE SOLVED.
import java.io.*;
import java.net.*;
class TestDownload
     public static void main(String[] args)
          try
               URL url = new URL("http://www.webmasterworld.com/forum48/1966.htm");
          //     URL url = new URL("http://localhost:8080/index.html");
          //     URL url = new URL("file:\\C:\\web_2.pdf");
               URLConnection connection = url.openConnection();
               InputStream stream = connection.getInputStream();
               BufferedInputStream in = new BufferedInputStream(stream);
               FileOutputStream file = new FileOutputStream("x.html");
               BufferedOutputStream out = new BufferedOutputStream(file);
               int i;
               while ((i = in.read()) != -1) {
                    out.write(i);
               out.flush();
          catch(IOException e)
               e.printStackTrace();
          System.out.println("Hello World!");
}

I was writing a program for fun, to try to download a web page, pdf or anything from the web. The program works fine when given local file system path in URL and also works well when i tried to access a page from the tomcat installed on my machine but gives a error 403 when tried to access URL's outside the system. Tried to read about 403, seems that many sites does not allow to access a particular URL directly using the directory structure, you have to pass thru different hyperlinks before reaching resource.
IS THERE ANY WAY THIS PROBLEM CAN BE SOLVED.
import java.io.*;
import java.net.*;
class TestDownload
     public static void main(String[] args)
          try
               URL url = new URL("http://www.webmasterworld.com/forum48/1966.htm");
          //     URL url = new URL("http://localhost:8080/index.html");
          //     URL url = new URL("file:\\C:\\web_2.pdf");
               URLConnection connection = url.openConnection();
               InputStream stream = connection.getInputStream();
               BufferedInputStream in = new BufferedInputStream(stream);
               FileOutputStream file = new FileOutputStream("x.html");
               BufferedOutputStream out = new BufferedOutputStream(file);
               int i;
               while ((i = in.read()) != -1) {
                    out.write(i);
               out.flush();
          catch(IOException e)
               e.printStackTrace();
          System.out.println("Hello World!");
}

TS4036 cannot sign in the operation couldn't becompleted.(com.apple.appleaccount error 403) showing in icloud i need a sloution

dear sir
i can't sing in to my icloud. showing the message as above
cannot sign in the operation couldn't becompleted.(com.apple.appleaccount error 403)
i need a sloution fo it as soon as i am waiting to you ar replay
thank you
mohamed haseef

Welcome to the Apple community.
Are you trying to create a new ID, how many ID's have you created already on that device.

HT5621 i have this error, cannot sign in the operation couldn't be compleated.(com.apple.ppleaccount error 403.)

i have I phone 4s facing this error, cannot sign in the operation couldn't be compleated.(com.apple.ppleaccount error 403.)

Welcome to the Apple community.
Are you trying to create a new ID, how many ID's have you created already on that device.

Error 403-forbidden from IE5 while authenticating a user through NT Realm

Hi,
Before posting this request, I checked the forum until Sep.18 to see if nobody
else experienced my problem, but in vain.
I am using WLS6.1Sp1 under NT4
I would like that NT users for defined NT Primary Domain Controller authenticate
themselves before accessing a web app. For that, I followed thoroughly the BEA
Doc to get the config.xml, web.xml, weblogic.xml and filerealm.properties correctly
configured.
The <auth-method> is set to FORM. The <security-role> and <security-role-assignment>
are also set with business roles and principals from the NT PDC. the <security-constraint>
with all the sub-tags are also defined. etc.etc. When I use the WL console, to
check users and groups lists, it works fine although it takes a lot of time before
being displayed (15 to 20 minutes !!!).
Through a Login.jsp, the user enters his/her login name and password. The result
is that I get the following message :
"Error 403--Forbidden
From RFC 2068 Hypertext Transfer Protocol -- HTTP/1.1:
10.4.4 403 Forbidden
The server understood the request, but is refusing to fulfill it. Authorization
will not help and the request SHOULD NOT be repeated. If the request method was
not HEAD and the server wishes to make public why the request has not been fulfilled,
it SHOULD describe the reason for the refusal in the entity. This status code
is commonly used when the server does not wish to reveal exactly why the request
has been refused, or when no other response is applicable."
No trace in the log files. No warning . Nothing.
My questions are:
1- Has somebody already experienced this?
2- Could you then help me ?
By advance , thank you very much.
Athmani H.
Note : I can provide you through email the config.xml, web.xml, weblogic.xml and
filerealm.properties and the concerned .jsp files on demand

Hi Jerry,
Many thanks for your interest and your help.
weblogic.properties file for WLS 6.1 SP1? There is none... I do have a filerealm.properties. I didn't state that I was using a weblogic.properties
file.
I checked the URL you proposed. I changed the <Auth-method> from FORM into BASIC.
A pop-up window is displayed requesting the user to enter username and password.
The result is that I get a web page displaying an Error 404 --not found.
Here is the complete error message :"Error 404--Not Found
From RFC 2068 Hypertext Transfer Protocol -- HTTP/1.1:
10.4.5 404 Not Found
The server has not found anything matching the Request-URI. No indication is given
of whether the condition is temporary or permanent.If the server does not wish
to make this information available to the client, the status code 403 (Forbidden)
can be used instead. The 410 (Gone) status code SHOULD be used if the server knows,
through some internally configurable mechanism, that an old resource is permanently
unavailable and has no forwarding address."
The message is displayed when the browser tries to resolve the following URL :http://localhost:7001/examplesWebApp/j_security_check
Having said that, I had already configured the <security-role-assignement> with
role-name and principals in weblogic.xml, as well as the <security-role> tag in
web.xml.
Thanks for your help
Cheers
Habib
Jerry <[email protected]> wrote:
Hi Athmani,
weblogic.properties file for WLS 6.1 SP1? There is none... weblogic.properties
is in WebLogic
5.1 and lower -- it was changed to config.xml for WLS 6.0 .. what are
you using your
weblogic.properties file for?
Anyways,
I have gotten NTRealms to successfully work with WLS 6.1, with security
on a web app, allowing
NT users to access certain resources. This stuff works.
Since you can see your users and groups through the console (even though
it takes a while) I
think that your NTRealm setup is okay.
I would guess that you have a problem with your deployment descriptors
in your web
application.
There are quite a few posts in this newsgroup that illustrate how to
set up security
constraints on resources in your web app with the deployment descriptors.
For example, check out
http://newsgroups.bea.com/cgi-bin/dnewsweb?cmd=article&group=weblogic.developer.interest.security&item=6244&utag=
Let me know how it goes, okay?
Cheers,
Joe Jerry
"Athmani H." wrote:
Hi,
Before posting this request, I checked the forum until Sep.18 to seeif nobody
else experienced my problem, but in vain.
I am using WLS6.1Sp1 under NT4
I would like that NT users for defined NT Primary Domain Controllerauthenticate
themselves before accessing a web app. For that, I followed thoroughlythe BEA
Doc to get the config.xml, web.xml, weblogic.xml and filerealm.propertiescorrectly
configured.
The <auth-method> is set to FORM. The <security-role> and <security-role-assignment>
are also set with business roles and principals from the NT PDC. the<security-constraint>
with all the sub-tags are also defined. etc.etc. When I use the WLconsole, to
check users and groups lists, it works fine although it takes a lotof time before
being displayed (15 to 20 minutes !!!).
Through a Login.jsp, the user enters his/her login name and password.The result
is that I get the following message :
"Error 403--Forbidden
From RFC 2068 Hypertext Transfer Protocol -- HTTP/1.1:
10.4.4 403 Forbidden
The server understood the request, but is refusing to fulfill it. Authorization
will not help and the request SHOULD NOT be repeated. If the requestmethod was
not HEAD and the server wishes to make public why the request has notbeen fulfilled,
it SHOULD describe the reason for the refusal in the entity. This statuscode
is commonly used when the server does not wish to reveal exactly whythe request
has been refused, or when no other response is applicable."
No trace in the log files. No warning . Nothing.
My questions are:
1- Has somebody already experienced this?
2- Could you then help me ?
By advance , thank you very much.
Athmani H.
Note : I can provide you through email the config.xml, web.xml, weblogic.xmland
filerealm.properties and the concerned .jsp files on demand

Error 403.7 - Forbidden: SSL client certificate is required

Hi people!
I�m developing a java client to a WebService (developed in .NET). The communication protocol is HTTPS to the URL where the Web Service is located (something like https://10.200.140.117/dirNotes/serviceName.asmx.). I�ve been reading many posts but I could'nt find the solution to the problem wich has the following message: Error 403.7 - Forbidden: SSL client certificate is required".
I�m using JDK 1.5 and developing and testing on Windows Plataform. I'm able to access the URL specified above directly from the browser, I installed the client certificate (the same that �ve put into the ,jks keystore. I�ve also imported the whole certificate chain of the server to the cacerts.
I�ll paste the code and the console trace below. I�d be very grateful if you can help me. Thanks a lot.
_THE CODE_
package principal;
import java.io.BufferedReader;
import java.io.FileInputStream;
import java.io.FileNotFoundException;
import java.io.FileReader;
import java.io.IOException;
import java.net.URL;
import java.net.UnknownHostException;
import java.security.KeyStore;
import java.security.Security;
import javax.net.ssl.HttpsURLConnection;
import javax.net.ssl.KeyManagerFactory;
import javax.net.ssl.SSLContext;
import javax.net.ssl.SSLSocket;
import javax.net.ssl.SSLSocketFactory;
import javax.net.ssl.TrustManagerFactory;
import org.apache.axis.client.Call;
import org.apache.axis.client.Service;
import entidade.Certificado;
public class SSLClient {
private static final int PORT_NUMBER = 443;
private static final String HTTPS_ADDRESS = "10.200.140.117";
private static String strCabecalhoMsg = "";
private static String strDadosMsg = "";
public static void main(String[] args) throws Exception {
System.setProperty("javax.net.ssl.keyStore", Certificado.getStrNomeArquivoJKSServidor());
System.setProperty("javax.net.ssl.keyStorePassword", "senha");
System.setProperty("javax.net.ssl.trustStore", "Certificados/cacerts");
System.setProperty("javax.net.ssl.trustStorePassword", "changeit");
System.setProperty("javax.net.ssl.keyStoreType", "JKS");
Security.addProvider(new com.sun.net.ssl.internal.ssl.Provider());
System.setProperty("javax.net.debug","ssl,handshake,record");
KeyStore ks = KeyStore.getInstance(KeyStore.getDefaultType());
ks.load(new FileInputStream(Certificado.getStrNomeArquivoJKSServidor()),
Certificado.getArranjoCharSenhaCertificadoServidor());
KeyManagerFactory kmf = KeyManagerFactory.getInstance(KeyManagerFactory.getDefaultAlgorithm());
kmf.init(ks, Certificado.getArranjoCharSenhaCertificadoServidor());
KeyStore ksT = KeyStore.getInstance(KeyStore.getDefaultType());
ksT.load(new FileInputStream("C:/Arquivos de programas/Java/jre1.5.0_05/lib/security/cacerts"), "changeit".toCharArray());
TrustManagerFactory tmf = TrustManagerFactory.getInstance(TrustManagerFactory.getDefaultAlgorithm());
tmf.init(ksT);
SSLContext sc = SSLContext.getInstance("SSLv3");
sc.init(kmf.getKeyManagers(), tmf.getTrustManagers(), new java.security.SecureRandom());
SSLSocketFactory factory = sc.getSocketFactory();
try{
// method to load the values of the strings strCabecalhoMsg and strDadosMsg
carregarXMLCabecalhoDados();
SSLSocket socket =(SSLSocket)factory.createSocket(HTTPS_ADDRESS, PORT_NUMBER);
socket.startHandshake();
String [] arr = socket.getEnabledProtocols();
URL url = new URL("https://10.200.140.117/dirNotes");
HttpsURLConnection.setDefaultSSLSocketFactory(factory);
HttpsURLConnection urlc = (HttpsURLConnection) url.openConnection();
urlc.setDoInput(true);
urlc.setUseCaches(false);
Object[] params = {strCabecalhoMsg, strDadosMsg};
Service service = new Service();
Call call = (Call) service.createCall();
call.setTargetEndpointAddress(url);
call.setOperationName("serviceName");
String ret = (String) call.invoke(params);
System.out.println("Result: " + ret);
catch (UnknownHostException uhe) {
uhe.printStackTrace();
System.err.println(uhe);
catch (Exception uhe) {
uhe.printStackTrace();
System.err.println(uhe);
private static void carregarXMLCabecalhoDados()
try
BufferedReader input = new BufferedReader( new FileReader("notas/cabecalho.xml"));
String str;
while((str=input.readLine()) != null)
strCabecalhoMsg += str ;
System.out.println("Cabe�a: " + strCabecalhoMsg);
input = new BufferedReader( new FileReader("notas/nota.xml"));
while((str=input.readLine()) != null)
strDadosMsg += str ;
System.out.println("Nota: " + strDadosMsg);
catch (FileNotFoundException e)
// TODO Auto-generated catch block
e.printStackTrace();
catch (IOException e)
// TODO Auto-generated catch block
e.printStackTrace();
_THE TRACE_
adding as trusted cert:
Subject: [email protected], CN=http://www.valicert.com/, OU=ValiCert Class 2 Policy Validation Authority, O="ValiCert, Inc.", L=ValiCert Validation Network
Issuer: [email protected], CN=http://www.valicert.com/, OU=ValiCert Class 2 Policy Validation Authority, O="ValiCert, Inc.", L=ValiCert Validation Network
Algorithm: RSA; Serial number: 0x1
Valid from Fri Jun 25 21:19:54 BRT 1999 until Tue Jun 25 21:19:54 BRT 2019
*others trusted certs*
trigger seeding of SecureRandom
done seeding SecureRandom
export control - checking the cipher suites
export control - no cached value available...
export control - storing legal entry into cache...
%% No cached client session
*** ClientHello, TLSv1
RandomCookie: GMT: 1198158630 bytes = { 48, 135, 53, 24, 112, 72, 104, 220, 27, 114, 37, 42, 25, 77, 224, 32, 12, 58, 90, 217, 232, 3, 104, 251, 93, 82, 40, 91 }
Session ID: {}
Cipher Suites: [SSL_RSA_WITH_RC4_128_MD5, SSL_RSA_WITH_RC4_128_SHA, TLS_RSA_WITH_AES_128_CBC_SHA, TLS_DHE_RSA_WITH_AES_128_CBC_SHA, TLS_DHE_DSS_WITH_AES_128_CBC_SHA, SSL_RSA_WITH_3DES_EDE_CBC_SHA, SSL_DHE_RSA_WITH_3DES_EDE_CBC_SHA, SSL_DHE_DSS_WITH_3DES_EDE_CBC_SHA, SSL_RSA_WITH_DES_CBC_SHA, SSL_DHE_RSA_WITH_DES_CBC_SHA, SSL_DHE_DSS_WITH_DES_CBC_SHA, SSL_RSA_EXPORT_WITH_RC4_40_MD5, SSL_RSA_EXPORT_WITH_DES40_CBC_SHA, SSL_DHE_RSA_EXPORT_WITH_DES40_CBC_SHA, SSL_DHE_DSS_EXPORT_WITH_DES40_CBC_SHA]
Compression Methods: { 0 }
main, WRITE: TLSv1 Handshake, length = 73
main, WRITE: SSLv2 client hello message, length = 98
main, READ: TLSv1 Handshake, length = 3953
*** ServerHello, TLSv1
RandomCookie: GMT: 1198158523 bytes = { 56, 166, 181, 215, 86, 245, 8, 55, 214, 108, 128, 50, 8, 11, 0, 209, 38, 62, 187, 185, 240, 231, 56, 161, 212, 111, 194, 79 }
Session ID: {222, 2, 0, 0, 147, 179, 182, 212, 18, 34, 199, 100, 168, 167, 48, 116, 140, 186, 151, 153, 226, 168, 163, 174, 24, 83, 208, 73, 179, 57, 86, 137}
Cipher Suite: SSL_RSA_WITH_RC4_128_MD5
Compression Method: 0
%% Created: [Session-1, SSL_RSA_WITH_RC4_128_MD5]
** SSL_RSA_WITH_RC4_128_MD5
*** Certificate chain
chain [0] = [
Version: V3
*many chains and related data*
Found trusted certificate:
Version: V3
Subject:
*many trusted certificates and related data*
*** ServerHelloDone
*** ClientKeyExchange, RSA PreMasterSecret, TLSv1
Random Secret: { 3, 1, 117, 112, 233, 166, 240, 9, 226, 67, 53, 111, 194, 84, 124, 103, 197, 28, 17, 36, 32, 48, 145, 166, 161, 61, 30, 63, 153, 214, 137, 113, 222, 204, 138, 77, 212, 75, 65, 192, 159, 215, 69, 156, 47, 188, 179, 219 }
main, WRITE: TLSv1 Handshake, length = 134
SESSION KEYGEN:
PreMaster Secret:
0000: 03 01 75 70 E9 A6 F0 09 E2 43 35 6F C2 54 7C 67 ..up.....C5o.T.g
0010: C5 1C 11 24 20 30 91 A6 A1 3D 1E 3F 99 D6 89 71 ...$ 0...=.?...q
0020: DE CC 8A 4D D4 4B 41 C0 9F D7 45 9C 2F BC B3 DB ...M.KA...E./...
CONNECTION KEYGEN:
Client Nonce:
0000: 47 6A 73 26 30 87 35 18 70 48 68 DC 1B 72 25 2A Gjs&0.5.pHh..r%*
0010: 19 4D E0 20 0C 3A 5A D9 E8 03 68 FB 5D 52 28 5B .M. .:Z...h.]R([
Server Nonce:
0000: 47 6A 73 BB 38 A6 B5 D7 56 F5 08 37 D6 6C 80 32 Gjs.8...V..7.l.2
0010: 08 0B 00 D1 26 3E BB B9 F0 E7 38 A1 D4 6F C2 4F ....&>....8..o.O
Master Secret:
0000: 0B 3A 71 F8 BB 79 5E 07 78 C2 5F 13 4F 92 9D 87 .:q..y^.x._.O...
0010: CF 69 0D 07 78 D2 59 46 1E C3 C1 5B A2 DB 04 B9 .i..x.YF...[....
0020: 42 60 92 48 59 8E FD FD C3 5B BD 00 9C 54 7A 7E B`.HY....[...Tz.
Client MAC write Secret:
0000: 33 7C 19 C4 75 D2 CE 82 39 98 37 E5 7D 20 CB B1 3...u...9.7.. ..
Server MAC write Secret:
0000: 1E 1E 48 C7 D4 77 23 E4 22 26 8B 98 2E 92 5C 95 ..H..w#."&....\.
Client write key:
0000: EE 05 39 76 B2 85 63 6C F7 70 30 CB 6D 08 07 54 ..9v..cl.p0.m..T
Server write key:
0000: 5C 2E 3B 5E DC D9 EC C5 04 C4 D5 B5 12 11 B9 08 \.;^............
... no IV for cipher
main, WRITE: TLSv1 Change Cipher Spec, length = 1
*** Finished
verify_data: { 143, 115, 243, 131, 242, 244, 12, 44, 191, 172, 205, 122 }
main, WRITE: TLSv1 Handshake, length = 32
main, READ: TLSv1 Change Cipher Spec, length = 1
main, READ: TLSv1 Handshake, length = 32
*** Finished
verify_data: { 231, 215, 37, 250, 177, 121, 111, 192, 11, 41, 1, 165 }
%% Cached client session: [Session-1, SSL_RSA_WITH_RC4_128_MD5]
setting up default SSLSocketFactory
use default SunJSSE impl class: com.sun.net.ssl.internal.ssl.SSLSocketFactoryImpl
class com.sun.net.ssl.internal.ssl.SSLSocketFactoryImpl is loaded
keyStore is : Certificados/certificadoSondaMonitor.jks
keyStore type is : JKS
keyStore provider is :
init keystore
init keymanager of type SunX509
trustStore is: Certificados\cacerts
trustStore type is : jks
trustStore provider is :
init truststore
adding as trusted cert:
Subject: [email protected], CN=http://www.valicert.com/, OU=ValiCert Class 2 Policy Validation Authority, O="ValiCert, Inc.", L=ValiCert Validation Network
Issuer: [email protected], CN=http://www.valicert.com/, OU=ValiCert Class 2 Policy Validation Authority, O="ValiCert, Inc.", L=ValiCert Validation Network
Algorithm: RSA; Serial number: 0x1
Valid from Fri Jun 25 21:19:54 BRT 1999 until Tue Jun 25 21:19:54 BRT 2019
adding as trusted cert:
* many certificates*
init context
trigger seeding of SecureRandom
done seeding SecureRandom
instantiated an instance of class com.sun.net.ssl.internal.ssl.SSLSocketFactoryImpl
export control - checking the cipher suites
export control - found legal entry in cache...
%% No cached client session
*** ClientHello, TLSv1
RandomCookie: GMT: 1198158632 bytes = { 93, 1, 41, 236, 165, 146, 251, 117, 129, 195, 129, 72, 245, 181, 43, 48, 80, 251, 244, 198, 223, 85, 82, 101, 20, 159, 17, 26 }
Session ID: {}
Cipher Suites: [SSL_RSA_WITH_RC4_128_MD5, SSL_RSA_WITH_RC4_128_SHA, TLS_RSA_WITH_AES_128_CBC_SHA, TLS_DHE_RSA_WITH_AES_128_CBC_SHA, TLS_DHE_DSS_WITH_AES_128_CBC_SHA, SSL_RSA_WITH_3DES_EDE_CBC_SHA, SSL_DHE_RSA_WITH_3DES_EDE_CBC_SHA, SSL_DHE_DSS_WITH_3DES_EDE_CBC_SHA, SSL_RSA_WITH_DES_CBC_SHA, SSL_DHE_RSA_WITH_DES_CBC_SHA, SSL_DHE_DSS_WITH_DES_CBC_SHA, SSL_RSA_EXPORT_WITH_RC4_40_MD5, SSL_RSA_EXPORT_WITH_DES40_CBC_SHA, SSL_DHE_RSA_EXPORT_WITH_DES40_CBC_SHA, SSL_DHE_DSS_EXPORT_WITH_DES40_CBC_SHA]
Compression Methods: { 0 }
main, WRITE: TLSv1 Handshake, length = 73
main, WRITE: SSLv2 client hello message, length = 98
main, READ: TLSv1 Handshake, length = 3953
*** ServerHello, TLSv1
RandomCookie: GMT: 1198158525 bytes = { 109, 114, 234, 1, 130, 97, 251, 9, 61, 105, 56, 246, 239, 222, 97, 143, 22, 254, 65, 213, 10, 204, 153, 67, 237, 133, 223, 48 }
Session ID: {23, 30, 0, 0, 26, 129, 168, 21, 252, 107, 124, 183, 171, 228, 138, 227, 94, 17, 195, 213, 216, 233, 205, 2, 117, 16, 21, 65, 123, 119, 171, 109}
Cipher Suite: SSL_RSA_WITH_RC4_128_MD5
Compression Method: 0
%% Created: [Session-2, SSL_RSA_WITH_RC4_128_MD5]
** SSL_RSA_WITH_RC4_128_MD5
*** Certificate chain
chain [0] = [
many chains again
*** ServerHelloDone
*** ClientKeyExchange, RSA PreMasterSecret, TLSv1
Random Secret: { 3, 1, 116, 247, 155, 227, 25, 25, 231, 129, 199, 76, 134, 222, 98, 69, 149, 224, 75, 6, 60, 121, 115, 216, 244, 246, 102, 92, 188, 64, 113, 56, 190, 43, 32, 51, 90, 254, 141, 184, 71, 48, 41, 29, 173, 180, 46, 116 }
main, WRITE: TLSv1 Handshake, length = 134
SESSION KEYGEN:
PreMaster Secret:
0000: 03 01 74 F7 9B E3 19 19 E7 81 C7 4C 86 DE 62 45 ..t........L..bE
0010: 95 E0 4B 06 3C 79 73 D8 F4 F6 66 5C BC 40 71 38 ..K.<ys...f\.@q8
0020: BE 2B 20 33 5A FE 8D B8 47 30 29 1D AD B4 2E 74 .+ 3Z...G0)....t
CONNECTION KEYGEN:
Client Nonce:
0000: 47 6A 73 28 5D 01 29 EC A5 92 FB 75 81 C3 81 48 Gjs(].)....u...H
0010: F5 B5 2B 30 50 FB F4 C6 DF 55 52 65 14 9F 11 1A ..+0P....URe....
Server Nonce:
0000: 47 6A 73 BD 6D 72 EA 01 82 61 FB 09 3D 69 38 F6 Gjs.mr...a..=i8.
0010: EF DE 61 8F 16 FE 41 D5 0A CC 99 43 ED 85 DF 30 ..a...A....C...0
Master Secret:
0000: FC C9 75 A4 2B F1 8A D8 AD 16 27 70 B7 E4 64 6C ..u.+.....'p..dl
0010: 05 D7 33 4A 53 91 2F 51 1E 32 D3 3B 2E 18 2E BC ..3JS./Q.2.;....
0020: E4 16 EE 2F 01 A1 08 48 19 09 32 68 CE 69 8F B1 .../...H..2h.i..
Client MAC write Secret:
0000: F1 95 3B CE 06 5B 8A 9B EC DE 1C 8F B4 AB D9 36 ..;..[.........6
Server MAC write Secret:
0000: BF 52 36 48 63 24 FE 74 22 BE 00 99 BE F0 6E E5 .R6Hc$.t".....n.
Client write key:
0000: 9F 08 0A 6E 8F 54 A3 66 1C BC C7 6B AE 88 67 E0 ...n.T.f...k..g.
Server write key:
0000: 06 A1 0B 4F 69 DE 5F AF 0E 6B B5 04 ED E8 EA F5 ...Oi._..k......
... no IV for cipher
main, WRITE: TLSv1 Change Cipher Spec, length = 1
*** Finished
verify_data: { 148, 93, 105, 42, 110, 212, 55, 2, 150, 191, 13, 111 }
main, WRITE: TLSv1 Handshake, length = 32
main, READ: TLSv1 Change Cipher Spec, length = 1
main, READ: TLSv1 Handshake, length = 32
*** Finished
verify_data: { 171, 150, 45, 10, 99, 35, 67, 174, 35, 52, 23, 192 }
%% Cached client session: [Session-2, SSL_RSA_WITH_RC4_128_MD5]
main, setSoTimeout(600000) called
main, WRITE: TLSv1 Application Data, length = 282
main, WRITE: TLSv1 Application Data, length = 8208
main, WRITE: TLSv1 Application Data, length = 1102
main, READ: TLSv1 Application Data, length = 1830
main, received EOFException: ignored
main, called closeInternal(false)
main, SEND TLSv1 ALERT: warning, description = close_notify
main, WRITE: TLSv1 Alert, length = 18
main, called close()
main, called closeInternal(true)
AxisFault
faultCode: {http://xml.apache.org/axis/}HTTP
faultSubcode:
faultString: (404)Not Found
faultActor:
faultNode:
faultDetail:
     {}:return code: 404
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR/html4/strict.dtd">
<HTML><HEAD><TITLE>The page cannot be found</TITLE>
<META HTTP-EQUIV="Content-Type" Content="text/html; charset=Windows-1252">
<STYLE type="text/css">
BODY { font: 8pt/12pt verdana }
H1 { font: 13pt/15pt verdana }
H2 { font: 8pt/12pt verdana }
A:link { color: red }
A:visited { color: maroon }
</STYLE>
</HEAD><BODY><TABLE width=500 border=0 cellspacing=10><TR><TD>
<h1>The page cannot be found</h1>
The page you are looking for might have been removed, had its name changed, or is temporarily unavailable.
<hr>
<p>Please try the following:</p>
<ul>
<li>Make sure that the Web site address displayed in the address bar of your browser is spelled and formatted correctly.</li>
<li>If you reached this page by clicking a link, contact
the Web site administrator to alert them that the link is incorrectly formatted.
</li>
<li>Click the <a href="javascript:history.back(1)">Back</a> button to try another link.</li>
</ul>
<h2>HTTP Error 404 - File or directory not found.<br>Internet Information Services (IIS)</h2>
<hr>
<p>Technical Information (for support personnel)</p>
<ul>
<li>Go to <a href="http://go.microsoft.com/fwlink/?linkid=8180">Microsoft Product Support Services</a> and perform a title search for the words <b>HTTP</b> and <b>404</b>.</li>
<li>Open <b>IIS Help</b>, which is accessible in IIS Manager (inetmgr),
and search for topics titled <b>Web Site Setup</b>, <b>Common Administrative Tasks</b>, and <b>About Custom Error Messages</b>.</li>
</ul>
</TD></TR></TABLE></BODY></HTML>
     {http://xml.apache.org/axis/}HttpErrorCode:404
(404)Not Found
     at org.apache.axis.transport.http.HTTPSender.readFromSocket(HTTPSender.java:744)
     at org.apache.axis.transport.http.HTTPSender.invoke(HTTPSender.java:144)
     at org.apache.axis.strategies.InvocationStrategy.visit(InvocationStrategy.java:32)
     at org.apache.axis.SimpleChain.doVisiting(SimpleChain.java:118)
     at org.apache.axis.SimpleChain.invoke(SimpleChain.java:83)
     at org.apache.axis.client.AxisClient.invoke(AxisClient.java:165)
     at org.apache.axis.client.Call.invokeEngine(Call.java:2784)
     at org.apache.axis.client.Call.invoke(Call.java:2767)
     at org.apache.axis.client.Call.invoke(Call.java:2443)
     at org.apache.axis.client.Call.invoke(Call.java:2366)
     at org.apache.axis.client.Call.invoke(Call.java:1812)
     at principal.SSLClient.main(SSLClient.java:86)
(404)Not Found
-----

I'm having the same problem with the same URL. I try many configuration and nothing works. My code is:
public class NFeClient {
     static{
          Security.addProvider(new BouncyCastleProvider());
     public static void main(final String[] args) throws Exception {
          final String path = "https://homologacao.nfe.sefaz.rs.gov.br/ws/nfeconsulta/nfeconsulta.asmx";
          final String keyStoreProvider = "BC";
          final String keyStoreType = "PKCS12";
          final String keyStore = "/home/mendes/certificados/cert.p12";
          final String keyStorePassword = "xxxx";
          System.setProperty("javax.net.ssl.keyStoreProvider",keyStoreProvider);
          System.setProperty("javax.net.ssl.keyStoreType",keyStoreType);
          System.setProperty("javax.net.ssl.keyStore",keyStore);
          System.setProperty("javax.net.ssl.keyStorePassword",keyStorePassword);
          System.setProperty("javax.net.ssl.trustStore","/home/mendes/workspace/NFE/jssecacerts");
          final SSLContext context = SSLContext.getInstance("TLS");
          final KeyManagerFactory kmf = KeyManagerFactory.getInstance("SunX509");
          final KeyStore ks = KeyStore.getInstance(keyStoreType);
          ks.load(new FileInputStream(keyStore), keyStorePassword.toCharArray());
          kmf.init(ks, keyStorePassword.toCharArray());
          context.init(kmf.getKeyManagers(), null, null);
          final URL url = new URL(path);
          final HttpsURLConnection httpsConnection = (HttpsURLConnection) url.openConnection();
          httpsConnection.setDoInput(true);
          httpsConnection.setRequestMethod("GET");
          httpsConnection.setRequestProperty("Host", "iis-server");
          httpsConnection.setRequestProperty("UserAgent", "Mozilla/4.0");
          httpsConnection.setSSLSocketFactory(context.getSocketFactory());
          try{
               final InputStream is = httpsConnection.getInputStream();
               final byte[] buff = new byte[1024];
               int readed;
               while((readed = is.read(buff)) > 0)
                    System.out.write(buff,0,readed);
          }catch(final IOException ioe){
               ioe.printStackTrace();
}and the response of the server is always the same:
java.io.IOException: Server returned HTTP response code: 403 for URL: https://homologacao.nfe.sefaz.rs.gov.br/ws/nfeconsulta/nfeconsulta.asmx
     at sun.net.www.protocol.http.HttpURLConnection.getInputStream(HttpURLConnection.java:1241)
     at sun.net.www.protocol.https.HttpsURLConnectionImpl.getInputStream(HttpsURLConnectionImpl.java:234)
     at br.com.esales.nfe.signer.client.NFeClient.main(NFeClient.java:60)Edited by: mendes on Apr 25, 2008 9:56 AM

Error 403

Similar Messages

Maybe you are looking for