Hi, does SSL really need certificates ? cannot we have mere SSL encryption without server authentication ? Based on reply I would need to add CA (self signed) certificate into .jetty_cacerts keystore and CA signed server certificate jetty.pkcs12 into .jetty_keystore. asdm javax net ssl sslhandshakeexception received fatal alert handshake_failure History When a TLS client and server (e.g. an API endpoint or resource) first start to communicate, they agree on a protocol version, pick cryptographic algorithms, potentially authenticate each other, and use public-key encryption techniques to create shared secrets. Talend brings powerful data management and application integration solutions within reach of any organization. Talend's open source solutions for developing and deploying data management services like ETL, data profiling, data governance, and MDM are affordable, easy to use, and proven in demanding production environments around the world. If the peer already sent the close_notify alert and it was already processed implicitly inside another function (SSL_read(3)), the SSL_RECEIVED_SHUTDOWN flag is set. SSL_read() will return <= 0 in that case, and SSL_get_error() will return SSL_ERROR_ZERO_RETURN. SSL_shutdown() will send the close_notify alert, set the SSL_SENT_SHUTDOWN flag.