Webservice SSL certificate errors

Hi,

I’m currently getting this error (Exception occurred in Test Connection.Url: null, Message: javax.net.ssl.SSLHandshakeException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target, HTTP Error Code: 0) when trying to call an API.

Note: I have already added the self-signed SSL certificate to our server’s trust store.

Are we getting this error because Sailpoint doesn’t trust the self-signed certificate? If so, would getting a CA to issue a certificate fix this error?

Hi @jasperman ,

Adding the certificate to the trusted store should fix the issue. After adding the certificate to trusted store , perform a clean restart of IIQ servers and it should work. Please find the following command for adding the certificate to trusted store

$ <keytool_path>/keytool -import -trustcacerts -alias <alias_name> -file <cer_path> -keystore <keystore_path>

where
keytool_path - location of keystore
alias_name - alias for the certifiate
cer_path- location of certificate with name
keystore_path - location of keystore

The default truststore (keystore_path) for Java is:
<JDK_HOME>/jre/lib/security/cacerts
or with newer JDK versions:
<JDK_HOME>/lib/security/cacerts

– Remold

This topic was automatically closed 60 days after the last reply. New replies are no longer allowed.