Questions tagged [pkix]

PKIX is the Internet's PKI as specified by the Internet Engineering Task Force (IETF). PKIX details X509 certificate formats, issuing rules and validation rules.

PKIX is the Internet's PKI as specified by the Internet Engineering Task Force (IETF). PKIX details X509 certificate formats, issuing rules and validation rules in various Request for Comments (RFC).

Not all PKI's are PKIX. Organizations and government agencies can run a private PKI with rules that are different from PKIX. The documentation and rules for the US government's PKI is over 2000 pages.

User agents such as browsers use a different set of issuing policies than those specified in the RFCs. The browser issuing polices are provided by the CA/Browser Forum (CA/B Forum), and explains why browsers reject certificates that OpenSSL, Wget and other free software accept.

137 questions

votes

0 answers

Eclipse Marketplace ValidatorException (PKIX)

I recently moved to a new machine at work. So I downloaded the latest Java/Eclipse and all other stuff. But I need to download two or three plugins and the trouble is, I keep getting this error: Unable to read repository at…

asked Feb 10 '20 at 13:42

hell_storm2004

1,401
2
33
66

votes

1 answer

Soap client, TLS 1.2 connection - PKIX path building failed - despite of cacerts contains certificates

I am trying to connect as Soap client to 3d party web service using on the first connection phase a TLS connection. Tech stack: Spring boot 2.2.2.RELEASE, spring-ws-security 2.2.2.RELEASE and httpclient 4.5.4, wss4j 1.6.19... detailed in pom.xml…

java tls1.2 spring-ws pkix

asked Jan 29 '20 at 16:51

user2473751

votes

1 answer

PKIX path building failed: SunCertPathBuilderException: unable to find valid certification path to requested target

I am using WSO2 API manager and keycloak servers for API gateway and user authentication. Both are running on Openshift 3.11. On the browser, while trying to redirect to a store page on wso2 apim getting below error. Also, I am using a self-signed…

java ssl-certificate wso2-api-manager openshift-origin pkix

asked Nov 30 '19 at 16:44

Sureshkumar Menon

1,165
7
27
49

votes

1 answer

PKIX path building failed - on valid let's encrypt certificate

I noticed today, that my services reject APIs certificate. It's not a self-signed certificate but one issued by let's encrypt. It looks fine in browsers and on some online cert checking tools, I found. It's been running just fine last week - but…

java ssl https pkix

asked Jun 17 '19 at 08:51

Matthias

2,622
1
18
29

votes

2 answers

PKIX path building Failed error while establishing SSL connection

I was trying to establish a ssl connection to the sever in my application. for this, I generated self-signed certificates and added them to the keystore as well as the java cacerts which is the trust store. But When I launch my application, I keep…

ssl pkix

asked Nov 23 '18 at 06:39

nak-ith

votes

0 answers

Can not connect to Docker daemon from eclipse windows

I can not connect to Docker daemon from Eclipse in Windows OS. I installed docker tooling plugin in my Eclipse Here are my configurations This is the error I am getting Please help me to fix this.

docker ssl docker-toolbox pkix

asked Sep 21 '18 at 16:45

Pradeep Charan

votes

1 answer

PKIX certificate path error : ok with java, not with Tomcat

We use Java JDK 1.8.0_112, Tomcat 8.0.32 and Liferay framework 7.0-GA4. We have to send a POST request to some HTTPS URL. Using a simple Java class, with all the code in the main function, everything works fine. Using Tomcat (with Liferay framework)…

java tomcat https liferay pkix

asked Mar 02 '18 at 11:36

Benjamin Bini

votes

0 answers

SSL Public key Pinning in mobile application

If my company's server leaf certificate expires and they are creating new certificate with different new Public key as per CA and its policies. Hence I can only pin certificate rather than public key or SPKI ? Doing so i know i have to update the…

ios security ssl certificate pkix

asked Feb 01 '18 at 10:24

guhan0

votes

1 answer

SAN certificates with same common name and different SAN entries

Is it possible to have two different certificates (RSA and DSA) to have the same common name but different SAN entries? For example: certificate1: type RSA CN=*.example.com SAN: *.example.ca, *.example.in certificate2: type DSA CN=*.example.com…

ssl certificate x509 tls1.2 pkix

asked Jan 30 '18 at 18:22

kharevbv

votes

1 answer

getting sun.security.validator.ValidatorException: PKIX path building failed:

Trying to install Eclipse DTP (Data Tools Platform) from Eclipse marketPlace.I am using Eclipse Java Neon. I am getting following exception/error. Unable to read repository at…

java eclipse eclipse-plugin pkix eclipse-dtp

asked Jan 09 '18 at 12:41

Awadesh

3,530
2
20
32

votes

2 answers

Convert DER to PEM, no key part in the resulting file

I have converted a CER/DER certificate with something like this: openssl x509 -inform der -in hostname.cer -out hostname.pem The resulting PEM file contains just: -----BEGIN CERTIFICATE----- ... contents here.. -----END CERTIFICATE----- But it…

ssl soap certificate private-key pkix

asked Jan 09 '18 at 11:55

Alexandru Trandafir Catalin

2,588
2
31
39

votes

1 answer

Add Self Signed Certificate Chain to keystore

I need to create a .keystore file with my self-signed certificate chain. I tried 2 methods. Method 1 : https://blog.didierstevens.com/2008/12/30/howto-make-your-own-cert-with-openssl/ I used the above post to create my self-signed certificate…

tomcat ssl certificate keytool pkix

asked Dec 26 '17 at 13:19

Hulk Man

votes

1 answer

How to create a self signed certificate use Python and Flask

My Applications are running as Docker containers. User interface using angular js Middleware ( running in a python flask server on some port) Database Now I want to create SSL certificate in UI and Python flask server using OpenSSL. I have used…

python flask certificate pyopenssl pkix

asked Dec 23 '17 at 10:14

Naveen

votes

0 answers

How to create CSR, P12 file as the same way "Certificate Assistant.app" using OpenSSL

Question: I would like to know what options are required to create CSR(.certSigningRequest) and export P12 files as the same with "Certificate Assistant.app" does. I use this CSR and P12 files for Apple Push Service. This is what I do: 1.…

security ssl https apple-push-notifications pkix

asked Dec 22 '17 at 14:58

user3404457

votes

0 answers

drone failure while doing a gradle build

I am trying to do a ./gradlew build in drone using the base image openjdk:8-jdk-alpine. But my java needs to connect to a https source to get some files and it fails while doing this since the base image doesn't have the certificates incorporated.…

java gradle drone.io pkix

asked Jul 12 '17 at 17:07

Lourdu Felix

Prev 1 2 3

…

9 10 Next