Skip to main content

Which certificate store does the server look at?

1 reply [Last post]
kawano1h
Offline
Joined: 2006-10-06

Hello all.
I'm trying to communicate with a service hosted on IIS7 through https.
And I get the following error trying to connect to it by JSP.
javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: No trusted certificate found

Anyhow, I was wondering where does the glassfish server look for trusted certificates?
Is it under C:\Program Files\Java\jdk1.5.0_09\jre\lib\security\cacerts? or is it under glassfish domain/domain1/config/keystore.jks?
I really want this Java client to communicate by means of https. Any help would be greatly appreciated.
Thank you.

Reply viewing options

Select your preferred way to display the comments and click "Save settings" to activate your changes.
km105526
Offline
Joined: 2005-04-04

I will try, but this is not specific to GlassFish.
You may want to try the JDK mailing list on java.net.

Anyhow, I feel your server hosted on IIS7 seems to be
sending a certificate that's not contained in cacerts.jks.
Like the name suggests, cacerts.jks is the store for certs
from a "CA". That's the default "trust store" for the server,
I believe.

Kedar