Certificate can not be verified by JWS

Hello,
we developed a java web start application and bought an SSL certificate to secure the communication between the application and the servlet (_no_ self-signed certificate).
Our intended java version is 1.5. The application jar is not signed.
When we try to start the java web start application we receive an warning dialog that the certificate is not trusted.
To shed some light on it we tried to download the application manually and start it as a normal java application.
Java 1.4.2_01 failed with error message
"javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: No trusted certificate found"
Details on java version:
java version "1.4.2_01" / Java(TM) 2 Runtime Environment, Standard Edition (build 1.4.2_01-b06) / Java HotSpot(TM) Client VM (build 1.4.2_01-b06, mixed mode)
Java 1.5.0_13 runs ok.
Details on java version:
java version "1.5.0_13" / Java(TM) 2 Runtime Environment, Standard Edition (build 1.5.0_13-b05) / Java HotSpot(TM) Client VM (build 1.5.0_13-b05, mixed mode, sharing)
This indicates that the java runtine knows about the certificate when the application is run as a standard java application.
Our problem is that we want to distribute the application as a java web start application, which, like I mentioned earlier, shows a warning dialog when starting up. The interesting thing is that this warning is shown while "bootstrapping" the application, that means the warning dialog is shown before the application jar has been downloaded to the client (just the jnlp file has been downloaded by the browser (which, by the way, has no problems at all with the certificate)).
To sum everything up: running 1.5.0_13 as java application runs ok, running 1.5.0_13 as java web start application shows warning dialog while bootstrapping.
Does JWS use a different set of certificates than the "normal" runtime ?
The 1.5.0_13 installation is unchanged (no deployment properties, no manually added certificates, etc.)
Please advise.
Regards,
Henning

This sometimes depends on the exact details* of the JNLP file(s) involved, and details* of the Jar's. Perhaps if you could link to the JNLP files (or post the content, with codebase changed if needed), I cold look further into it.
* For example, the fact you mention some jar's are signed whereas others are not, indicates that some must be in separate JNLP files (it cannot work otherwise).

Similar Messages

  • The server you are connected to is using a security certificate that CAN NOT BE VERIFIED.

    First we have changed nothing, we have not done anything to our Yahoo or Outlook 2003 and suddenly this starts popping up all the time.
    We have Windows 7, Office Pro. 2003 and use Outlook 2003 with Verizon Fios and Yahoo is our email server. This message started popping up yesterday out no where, does anyone have any thoughts about it? I have posted it on the Verizon site, however I have more faith in the help I receive here thank you.
    The server you are connected to is using a security certificate that CAN NOT BE VERIFIED.
    A certificate chain processed but terminated in a root certificate which is not trusted by the trust provider.
    Do you want to continue using this server?
    Solved!
    Go to Solution.

    Did you get any email notification of a change to your email servers? So far I only found these settings from 2010
    Incoming Server: incoming.yahoo.verizon.net
    Server Requires Authentication: Yes
    Username: fakeacct
    Password: fakepassword
    Requires a Secure Connection (SSL): No
    Port: 110
    Outgoing Server: outgoing.yahoo.verizon.net
    Server Requires Authentication: Yes (You can set it to use the same settings as incoming, or manually enter the username and password.)
    Requires a Secure Connection (SSL): No
    Port: 25
    (Big thanks to SomeGirl for this info)
    Are these the settings configured in outlook?  If these are the setting they may need to be updated
    If a forum member gives an answer you like, please give them the Kudos they deserve. If a member gives you the answer to your question, mark the answer as Accepted Solution so others can see the solution to the problem. Thanks !!!
    http://forums.verizon.com/t5/Verizon-net-Email/Fix-for-Missing-Inbox-sent-folders-etc-with-Internet-Explorer-11/m-p/647399

  • TS4268 my daughter's email can not be verified on Itouch messages bc it says "can not be verifed bc the email is already in use" does anyone know what the solution is?

    my daughter's email can not be verified on Itouch messages bc it says "can not be verifed bc the email is already in use" does anyone know what the solution is?

    Maybe:
    iOS: FaceTime is 'Unable to verify email because it is in use'
    iOS 5: iMessage not working – how to fix - Apple Toolbox

  • How can I update to OSX Yosemite when product distribution file can not be verified?

    When I try to upgrade to OSX Yosemite I receive the following error message:
    We could not complete your purchase.
    The product distribution file could not be verified.  It may be damaged or was unsigned.
    Can someone help me with this issue?

    When I try to upgrade to OSX Yosemite I receive the following error message:
    We could not complete your purchase.
    The product distribution file could not be verified.  It may be damaged or was unsigned.
    Can someone help me with this issue?

  • I have an active AppleID that has typo in name so Email can not be verified???? Help

    I changed the Primary email for an appleid. There was a typo in the email address. this makes the appleid waiting for verification. I spent five and a half hours with support before they understood the problem. Once we both were talking about the same thing, we successfully reset the password and I was able to apply updates/upgrades to Apps. I followed supports instructions which is not how I normally update my second appleid apps. Their instructions caused the active support chat session to be terminated and no log was produced. This being my first time with chat support I did not know how to reestablish the connection. I applied all the pending updates to apps. Once that was compile I performed maintenance to the apple and corrected the primary email address. I DID NOT KNOW THAT ALSO CHANGES THE APPLEID. it set status back to waiting for verification. I'm locked out again. Before I spend more time with support, I need to ask other users if they know how to fix this. I think I know a way from everything we did that day, but would like some users to also say how it can be done. The reason it took so long before was support did not believe what I reported as error messages and generated email text. If you have found a way to do this Please    reply.   . I will then have information so hopefully support will listen to me and not take more than a short time to resolve. If no one knows a way to fix this, I will try to identify all apps affected and backup data, delete app and rebuy with my working appleid. Yes I now know the importance and mess created when appleid primary email is change. Thank you in advance.      .

    See this older post from another forum member Zevoneer covering the different methods and software available to assist you with the task of copying content from your iPod back to your PC and into iTunes.
    https://discussions.apple.com/thread/2452022?start=0&tstart=0
    B-rock

  • Can not get verify email from my Apple ID

    Hello,
    I've tryed several times to apply for Resend Verification Email.
    I've checked junk on folders in my Mail and on server as well.
    I'm using kind of mail [email protected]
    Does apple has some bug or problem with Verification?
    Thanks
    Ondrej

    Do you have a rescue email address on the account ? If you do then you've checked the inbox and spam folder on that email account as well ? If it's not there either, and you've tried requesting the reset email again, then you could try contacting Support in your country and see if they can re-enable the account for you.
    Contacting Apple about account security : http://support.apple.com/kb/HT5699

  • Can not pass verifying stage when sign in to Facetime

    I enter in my AppleID and password and than select the email i want callers to call me on but i can't past the verifying stage. what is the issue?
    when managing my appleid my email address is verified.

    FaceTime, Game Center, Messages: Troubleshooting sign in issues

  • I have downloaded some apps on this Imac.  When I open them, it says they were downloaded on another computer.  After I try to sign in it says my computer can't be verified.  Any ideas?

    Like I said, I downloaded some Apps onto this Imac.  When I try to use them it says that they were purchased on another computer.  That said, I don't have another computer.  It will then ask for my to sign in with my apple id and password.  When I put those in, it says that the computer can not be verified.  Contact apple support.  I don't have apple care and can't exactly afford to buy it at this time.  Anyone know how to resolve this issue??

    Ok, I had a glitch, forced to restart, and lost my train of thought.
    Reinstalling iTunes should fix the major issue that might have gone wrong, perhaps your explaination points will disappear and everything will be peachy again.
    But if they don't, you can open the XML file in iTunes Folder using a Text edit program to see what the common pathname is to the iTunes Music folder or where your content is located.
    If you moved the itunes folder, it needs to go back.
    I can't  download iTunes to my Vista virtual machine to test it out right now because iTunes is down, so I can't verify the pathname, perhaps your issue and the iTunes being down are related somehow?
    You don't want to import all your music again, but it's a option, but you lose all your playlists, that's what I'm trying to recover.
    If oyu don't have a whole lot of playlists, then simply select all the explaimation point music and delete, select File from the menu and import your itunes folder again.

  • Site Recovery Manager (SRM) v6.0 fails to pair sites - certificate chain not verified

    I have used the default self-signed certificates throughout the vCenter and SRM setup.  When going to pair the vCenters, I get "Server certificate chain not verified".  These are 2 new VCSA 6.0 VMs (embedded PSCs for each) and 2 new Windows 2012 R2 servers to run SRM 6.0.  I can view the Site in each respective vCenter but can't pair them.  Does anyone have suggestions?  We have tried valid SSL certs before on our original 6.0 deployment and continuously run into these certificate chain not valid errors.

    Yes, I always used the FQDN.  This issue was actually the result of having an incorrect vCenter topology.  The error resulted in us spending hours with support all around valid or self-signed certs.  In the end, I had to completely redeploy new VCSA 6.0 appliances and follow the 3rd recommend topology.
    http://kb.vmware.com/selfservice/microsites/search.do?language=en_US&cmd=displayKC&externalId=2108548
    With this setup, it also links the vCenters and it seems to be much quicker than Linked Mode in previous versions.  I was able to pair the sites in SRM without issue.  FYI, I am using self-signed certs all around at the moment.  SRM is very finicky about trust with SSL certs so I won't try implementing valid SSL certs until I get some working failovers.

  • MAC OS X 10.6.8 (safari can not verify website)

    Hi
    For past few days i am having problem when i try to visit any website it show a massage "safari can not identify the address of the website www..... then below he message is "The certficate of this website is invalid". this message is coming up on all the website
    thank you for your help

    Running the combo updater should fix this for you. It should update the certificate that is out of date that is at the root cause of the problem.
    You posted in the Snow Leopard forum so here is the link for Snow Leopard combo. Check under the Apple in the Menu bar > About this Mac to verify you are on 10.6
    Combo updater: Mac OS X 10.6.8 Update v.1.1 - 1.09 GB
    http://support.apple.com/kb/DL1399
    If you still see the error after running the combo updater, open Keychain Access in Applications/Utilities.
    Under Keychain Access in the Menu bar select run Keychain First Aid (see FIX for: "Safari can't verify the identity of the website" - certificate not valid for more details on running Keychain First Aid to repair certificates)

  • How can I verify my iCloud account if I can not access the primary email account associated with my Apple ID?

    The email address I had set for my Apple ID when I had originally signed up was through my college.  I have been out of college now for a few years and the email account has been deleted. I was trying to set up iCloud on my iPad and iPhone but it says I need to access the account to verify through email.  I have tried to change my Apple ID email to my current email address but it tells me I can not do this either because that email is set up as my rescue email.  How can I change my primary email address for my Apple ID or get my iCloud verified in this situation I'm in?

    Go to http://appleid.apple.com and click 'Manage your account'. You will be able to change the non-Apple email address you use as a login. You will then need to log out and in again on all your devices.

  • Certificate error connecting to VPN, can not validate server

    Used the configuration utility to configure a profile for VPN using certificate as authentication.  Keep getting error, can not validate server.  When I export the cert to my desktop, I see the CRL information in it.  When I view the details of the cert after installing on the iPad, I don't see any CRL information.  I'm guessing this may be the problem only not sure how to resolve it. 

    solved the problem by adding an additional attribute in the certificate request to the VPN server (cisco router) and first enable the server SubjectAltName CA
    In CA server:
    certutil -setreg policy\EditFlags +EDITF_ATTRIBUTESUBJECTALTNAME2
    certutil -setreg policy\SubjectAltName enabled
    certutil -setreg policy\SubjectAltName2 enabled
    net stop certsvc
    net start certsvc
    In certificate request for VPN server:
    In the Attributes box, type the desired SAN attributes. SAN attributes take the following form:
    san:dns=dns.name[&dns=dns.name]/san:ipaddress=x.x.x.x
    (external dns/ip)
    http://support.microsoft.com/kb/931351

  • "Can not get a key" error when assigning the OAuthTokenIssuer certificate

    I am migrating from Lync Server 2010 to 2013. When deploying the 2013 server, it fails when assigning the OAuthTokenIssuer certificate. With the KeyException error below.
    I've tried "re-keying" the cert and confirmed that the key is exportable. Does anyone have any insight on how to resolve this? 
    =============
    <?xml version="1.0" encoding="UTF-8"?>
    -<CsMgmtLog Name="Set-CSCertificate">
    <Info Time="2014-04-21 19:00:53Z" Title="Connection">Data Source=servername.domain.com;Initial Catalog=xds;Integrated Security=True</Info>
    -<Action Name="Set Certificate" Time="2014-04-21 19:00:53Z">
    -<Exception Time="2014-04-21 19:00:54Z" Message="Can not get a key." Type="KeyException">
    <StackTrace Time="2014-04-21 19:00:54Z"> at Microsoft.Incubation.Crypto.GroupKeys.DKMBase.GetCurrentKeyAndUpdate(KeyPolicy& keyPolicy) at Microsoft.Incubation.Crypto.GroupKeys.DKMBase.Protect(MemoryStream plaintext) at Microsoft.Rtc.Management.Internal.KeyManagement.GroupKeyWrapper.Encode(Byte[]
    inBytes) at Microsoft.Rtc.Management.Deployment.Core.Certificate.SetCMSCertificate(IScopeAnchor scope, X509Certificate2 foundCert, X509Certificate2Collection certs, Nullable`1 effectiveTime, Boolean isRoll) at Microsoft.Rtc.Management.Deployment.Core.Certificate.SetCMSCertificate(IScopeAnchor
    scope, String thumbprint, Nullable`1 effectiveTime, Boolean isRoll) at Microsoft.Rtc.Management.Deployment.Tasks.SetCertificateTask.Action() at Microsoft.Rtc.Management.Internal.Utilities.LogWriter.InvokeAndLog(Action action)</StackTrace>
    </Exception>
    <Complete Time="2014-04-21 19:00:54Z"/>
    </Action>
    <Error Time="2014-04-21 19:00:54Z" Title="Error">An error occurred: "Microsoft.Incubation.Crypto.GroupKeys.KeyException" "Can not get a key."</Error>
    </CsMgmtLog>
    =============
    Regards,
    Yai

    Please try to assign the certificate with Lync Server Management Shell.
    Run the following command:
    Set-CSCertificate -Identity Global -Type OAuthTokenIssuer –Thumbprint <string>.
    Check if you can assign default certificate to Lync Front End Server.
    Check the Root Certificate Authority certificate is not expired.
    Lisa Zheng
    TechNet Community Support

  • Can not receive Mac mail -error Outlook cannot find the server. Verify the server information is entered correctly in the Account Settings, and that your DNS settings in the Network pane of System Preferences are correct.  Account name: "MacMail"

    Can not receive Mac mail -error Outlook cannot find the server. Verify the server information is entered correctly in the Account Settings, and that your DNS settings in the Network pane of System Preferences are correct.  Account name: "MacMail"
    What are the correct mail account settings and more importantly the correct DNS settings
    Thank you for any help you may be able to provide
    Cheers
    Chris (iMac i7)

    Do not delete the old account yet. sign up for an iCloud account if you haven't.
    I understand .mac mail will still come through. Do not delete the old account yet.
    You cannot use .mac or MobileMe as type of Account, you have to choose IMAP when setting up, otherwise Mail is hard coded to change imap.mail.me.com to mail.me.com & smtp.mail.me.com to smtp.me.com, no matter what you try to enter.
    iCloud Mail setup, do not choose .mac or MobileMe as type, but choose IMAP...
    On second step where it asks "Description", it has to be a unique name, but you can still use your email address.
    IMAP (Incoming Mail Server) information:
              •          Server name: imap.mail.me.com
              •          SSL Required: Yes
              •          Port: 993
              •          Username: [email protected] (use your @me.com address from your iCloud account)
              •          Password: Your iCloud password
    SMTP (outgoing mail server) information:
              •          Server name: smtp.mail.me.com
              •          SSL Required: Yes
              •          Port: 587
              •          SMTP Authentication Required: Yes
              •          Username: [email protected] (use your @me.com address from your iCloud account)
              •          Password: Your iCloud password
    Also, you must upgrade your password to meet the new criteria:  8 characters, including upper and lower case and numbers.  If you have an older password that does not meet these criteria, when you try to setup mail on your mac, using all of the IMAP criteria listed above, it will still give a server error message.  Go to   http://appleid.apple.com         then follow directions to change your password, then go back to setting up your mail using the IMAP instructions above.
    Thanks to dpepper...
    https://discussions.apple.com/thread/3867171?tstart=0

  • I can't update IPhoto, it says "the product distribution file could not be verified it must be damaged or signed in" I bought it on iTunes and have 8,000 photos already. how can I update and correct this??

    I can't update IPhoto, it says "the product distribution file could not be verified it must be damaged or signed in" I bought it on iTunes and have 8,000 photos already. how can I update and correct this??

    You might try resetting the App Store application and clear the cookies via this menu:
    as described in this website: Make use of the Mac App Store debug menu | MacFixIt - CNET Reviews
    OT

Maybe you are looking for