Tomcat SSL: unable to find valid certification path to requested target

java tomcat ssl ssl-certificate pki
16,347

I've been able to fix this problem in the past by setting the javax.net.ssl.trustStore system property at runtime to point to the jssecacerts file. Just putting it in the "right" place never worked for me; I had to set the location explicitly. This is more portable anyway, so I recommend it in general if your app ever needs to move around.

System.setProperty("javax.net.ssl.trustStore", "/path/to/jssecacerts");
Share:
16,347
Sergio Santiago
Author by

Sergio Santiago

Updated on June 04, 2022

Comments

  • Sergio Santiago
    Sergio Santiago almost 2 years

    I'm trying to access an url in my application, but I'm getting this error.

    1771426 [http-bio-8180-exec-15] ERROR gadget.GadgetValidatorServlet  - wsdl.exception.WSInvokerException: wsdl.exception.WSInvokerException: javax.xml.ws.soap.SOAPFaultException: javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target
1771426 [http-bio-8180-exec-15] ERROR gadget.GadgetPortalValidatorServlet  - gadget.exception.GadgetValidatorException: wsdl.exception.WSInvokerException: wsdl.exception.WSInvokerException: javax.xml.ws.soap.SOAPFaultException: javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target

    I've tried to apply all of those fixes but with no success: http://www.mkyong.com/webservices/jax-ws/suncertpathbuilderexception-unable-to-find-valid-certification-path-to-requested-target/

    Shortly it needs to run InstallCert app (java InstallCert my.domain.com) and generate the file jssecacerts. After that I've copied and paste this file into /opt/java/jdk1.7.0_45/jre/lib/security/jssecacerts

    I've also import my cert, the same used in my ssl url (httpd) into my keystore used by tomcat.

    Even after that I still getting this error.

    Any thoughts?

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

Where to put certificates in Tomcat, when app acts as client?
Tomcat Connector Matching Property Warning
need help Debugging SSL handshake in tomcat
How to automatically install self signed certificate in IE Trusted Root Certification Authorities store
Error: Alias name [null] does not identify a key entry during implementing SSL in Tomcat
Where is the location of Keystore file in JAVA?
Java server self-signed certificate + client certificate and SSL - connection reset
javax.net.ssl.SSLHandshakeException: Received fatal alert: handshake_failure
How to disable certificate validation in java
GoDaddy SSL Certificate Keystore Installation Tomcat7