1 Reply Latest reply on Dec 9, 2006 11:37 AM by Scott Stark

    untrusted server cert chain - Please Help!

    David Clark Newbie

      Not sure if this is the correct forum, but I really need some help with this and it seemed logical.

      I have an existing application running on JBoss (not sure what version, but I am guessing 3.x) that connects to a third party server via SSL. The third party certificate recently expired. They updated it but I still get this message:

      javax.net.ssl.SSLException: untrusted server cert chain
      at com.sun.net.ssl.internal.ssl.SSLSocketImpl.a(DashoA6275)
      at com.sun.net.ssl.internal.ssl.ClientHandshaker.a(DashoA6275)
      at com.sun.net.ssl.internal.ssl.ClientHandshaker.processMessage(DashoA6275)
      at com.sun.net.ssl.internal.ssl.Handshaker.process_record(DashoA6275)
      at com.sun.net.ssl.internal.ssl.SSLSocketImpl.a(DashoA6275)
      at com.sun.net.ssl.internal.ssl.SSLSocketImpl.a(DashoA6275)
      at com.sun.net.ssl.internal.ssl.AppOutputStream.write(DashoA6275)
      at java.io.OutputStream.write(OutputStream.java:56)
      at com.sun.net.ssl.internal.ssl.SSLSocketImpl.startHandshake(DashoA6275)

      I am just not sure what I am supposed to do so that my application can use the new application.

      -> Do I need a copy of the vendors certificate stored locally?
      -> Do I need to use the keytool to establish a link?
      -> I saw directions on the wiki for creating a SSL certificate, but it didn't seem to apply here (granted, I have no idea what I am doing here!)

      Again, I really need help with this - its a brand new area for me.