PKIX path building failed: unable to find valid certification path to requested target

Chary,

     Can you please explain the scenario in more detail.

1.) Are you using WSAS as a client to the web service MS Exchange 2007 ?

If you want to upload a public key certificate to a existing key store in WSAS, this can be done using "Import certificate" functionality of Admin UI. This doesn't require private key. You can import certificate using Manage -> Key Stores -> Import Certificate ( Gold shield icon )

Thanks, Nandana

---------------------------------------------------------

Problem:

While trying to establish an HTTPS connection to a Web Service, we get the exception:

PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target

In this case I was trying to establish HTTPS connection to MS Exchange 2007 Web service. What this usually means is that the server is using a test certificate.

Solution:

WSO2 WSAS should recognize this test certificate by means of truststore. One way is to upload keystore in WSO2 WSAS Admin UI. But uploading in Admin UI requires a private key.

Below is the alternative way:

1 Generated truststore using http://blogs.sun.com/andreas/entry/no_more_unable_to_find

2 Place the generated trustsore file (jssecacerts) in "wso2wsas-2.1\conf".

3 In the program, set the System property

 System.setProperty("javax.net.ssl.trustStore", "conf/jssecacerts");

 System.setProperty("javax.net.ssl.trustStorePassword", "<password>");

Best Regards,

Chary

---------------------------------------------

Thanks for the info, but what is the password that I should use?  I have tried the default for WSAS as well as a number of others, but none seem to work when I run the InstallCert java app.

Thanks again for the info!