Hi... we've SecurID 8.2 SP1 patch 7, SDK 8.2 SP1 for java, Tomcat 8, Java 1.8 an we did import Securid CA certificate into tomcat kestore and set the -Djavax.net.ssl.trustStore parameter. So, we try connect our API, but the system return:
javax.net.ssl.SSLException: Certificate not verified.
After debug catalina, the detailed error is:
Certificate validation failed with message: Parameters must be PKIXParameters or be CertPathWithOCSPParameters containing PKIXOParameters.
Can any some idea about them?
Thanks.
Hello Rodrigo,
Make sure that you imported the root certificate not the server certificate inside tomcat keystore (check below steps)
If you are using SSL EJB connection, make sure you use the below Java system properties in the Java command line:
-Dweblogic.security.SSL.trustedCAKeyStore=SDK_HOME/lib/java/trust.jks
For SSL SOAP Connection, please check below:
-Djavax.net.ssl.trustStore=SDK_HOME/lib/java/trust.jks
Thanks,
Best regards.
Omar Allam