align-toparrow-leftarrow-rightbackbellblockcalendarcamerachatcheckchevron-downchevron-leftchevron-rightchevron-small-downchevron-small-leftchevron-small-rightchevron-small-upchevron-upcircle-with-crosscrosseditfacebookglobegoogleimagesinstagramlocation-pinmagnifying-glassmailmoremuplabelShape 3 + Rectangle 1outlookpersonplusImported LayersImported LayersImported Layersshieldstartwitteryahoo

Re: [ljc] Fwd: Exceptions OF HELL

From: Neil B.
Sent on: Friday, June 22, 2012 9:46 AM
The exception means that your certificate does not have a valid
signing chain all the way up to the root certificates installed in
your OS/browser (i.e. Verisign, Thawte etc). Probably because it's a
self-signed certificate.

To support self-signing or a different set of root certificates, you
need to implement your own­anager and attach it to
the SSLContext.


On Fri, Jun 22, 2012 at 8:26 AM, josemiguel <[address removed]> wrote:
> Hi all,
> I've found resources on how to use Shibboleth as Service Provider and
> Identity Provider, or OpenAM but nothing where OpenAM acts as a
> Service Provider, and I wonder whether any member has previous
> experience on that.
> I set up a local instance of OpenAM and I wanted to test the Service
> Provider configuration against, with no success. I'm a
> bit stuck dealing with digital certificates, and not very sure about
> what I'm doing wrong.
> OpenAM provides its own keystore with one test certificate that I have
> exported to identify my Open AM service provider as
> configuration requires. Furthermore I configure tomcat to use UTF-8
> encoding.
> Exception:
> com.sun.xml.messagin­g.saaj.SOAPException­Impl: Message send failed
> Caused by:­dshakeException:
>­or.ValidatorExceptio­n: PKIX path building failed:
>­r.certpath.SunCertPa­thBuilderException: unable to
> find valid certification path to requested target
> Caused by:­or.ValidatorExceptio­n: PKIX path
> building failed:
>­r.certpath.SunCertPa­thBuilderException: unable to
> find valid certification path to requested target
> Caused by:­r.certpath.SunCertPa­thBuilderException:
> unable to find valid certification path to requested target
> Thank you.
> José Miguel Martínez Carrasco
> --------------------­--------------------­--------
> http://www.jm2dev...­
> http://uk.linkedi...­
> --
> Please Note: If you hit "REPLY", your message will be sent to everyone on this mailing list ([address removed])
> http://www.meetup...­
> This message was sent by josemiguel ([address removed]) from LJC - London Java Community.
> To learn more about josemiguel, visit his/her member profile: http://www.meetup...­
> Set my mailing list to email me
> As they are sent
> http://www.meetup...­
> In one daily email
> http://www.meetup...­
> Don't send me mailing list messages
> http://www.meetup...­
> Meetup, PO Box 4668 #37895 New York, New York[masked] | [address removed]

Our Sponsors

  • Our Blog

    Read the latest news from the LJC

  • RecWorks Ltd

    Fixing Tech Recruitment using the Power of Community

  • jClarity

    Java/JVM Performance Analysis Tools & mentoring for Java related matters

  • LJC Aggrity

    Our LJC Aggrity site contains blog posts from our members

  • LJC Book Club

    Our Book club with book reviews from our members

  • Devoxx UK

    Java Community Conference in collaboration with the LJC, 8-10th June 16

  • SkillsMatter

    "Host, help organise, promote, film many of our meetings."

  • IBM

    Build Enterprise-grade apps at start-up speed.

  • New Relic

    New Relic makes sense of billions of metrics a day in real time.

  • Hazelcast

    Hazelcast is the leader in operating in-memory computing.

  • Java.Net

    We are an official Java User Group recognised by Oracle's JUG program

  • JRebel

    Free 3 month J-Rebel license.

  • O'Reilly

    40% discount on printed books and 50% on e-books.

  • Craft Rebellion

    Your choice of fresh craft beer, delivered. For 10% off use ‘LJC'

People in this
Meetup are also in:

Sign up

Meetup members, Log in

By clicking "Sign up" or "Sign up using Facebook", you confirm that you accept our Terms of Service & Privacy Policy