Java library available to read and update Active Directory ntSecurityDescriptor attribute.
As is so often the case, working with SSL you need to configure and test a strong authentication (SSL client authentication). In all these cases, you need to provide an ad-hoc client certificate to perform a succesful handshake.
Few basic steps to create a complete keystore to host a server certificate. Create your custom self-signed CA if not yet available a trusted one # openssl genrsa -des3 -out ca.key 1024 # openssl req -new -x509 -day