1

I'm wondering if There is a way to force WSO2 API Manager accept untrusted certificates. I want to use HTTPS endpoints in Publisher , And I do not want to import public certificate to client-truststore.jks and wso2carbon every time.

I also tried to set HostnameVerifier to allowAll, but still same error happens.

exception : PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target

I am working on WSO2 API Manager 2.1.0

Many Thanks.

mohammad
  • 25
  • 2
  • 10

1 Answers1

0

You can't disable cert validation. But from 2.2.0 onwards, you can install certificates from UI.

https://docs.wso2.com/display/AM220/Dynamic+SSL+Certificate+Installation

Bee
  • 12,251
  • 11
  • 46
  • 73
  • thank you so much, I updated to 2.2.0 , just one question , when I upload certificate , according to documents , it should be applied after 10 minutes , but it did not, even after 1 hour, what I missed? – mohammad Jul 03 '18 at 04:04
  • Did you see any errors in the log while installing the cert? – Bee Jul 03 '18 at 04:06
  • Thanks for your comment,I didn't see any errors , everything looks good,The certificate applied only if I restart api manager.I don't understand if it is a bug in api manager new version 2.2 or I am missing some configurations? – mohammad Jul 04 '18 at 09:10
  • I hope you're using a fresh 2.2.0 pack and you didn't copy any config files from 2.1.0. Yes? – Bee Jul 04 '18 at 14:35
  • Yes exactly, I didn't copy anything from 2.1.0 . I tried various ways but still no success. – mohammad Jul 07 '18 at 04:37
  • Hi Bee, is it still like this in 3.2.0? We terminate SSL at the load balancer and wish to turn off SSL to Publisher – Jonathan Lin Nov 02 '20 at 05:32
  • Using Google Cloud, and it was easy to configure the load balancer to use SSL for the internal connection from load balancer to WSO2 instance. Thanks – Jonathan Lin Nov 02 '20 at 06:31