Request Certificate error

Similar Messages

• SSL Offloading and Certificate Errors

  I am attempting to offload SSL on an F5 load balancer.  I made the certificate request from the load balancer, procured the certificate from Entrust, and installed on the load balancer.  I then followed SSL Offloading TechNet instructions here:
  http://technet.microsoft.com/en-us/library/dn635115(v=exchg.150).aspx.  My two CAS servers still have the self-signed certificates bound in IIS.  I am getting certificate
  errors when making RPC over HTTPs connections in Outlook and the self-signed certificate is popping up.
  My question is what do I do with the certificates on my 2 CAS servers?  Do I leave the self-signed certificates on there and export the Entrust certificate from my F5 and then import it to my CAS servers and change the bindings in IIS? 
  Or do I have to make the CSR from a CAS server, issue a new Entrust certificate from that, import to both CAS servers, then import to the F5 and make sure all bindings are correct in IIS?
  Or am I completely misunderstanding how this works and need to do something different entirely?
  Thanks in advance for any guidance.

  As I previously mentioned, I have already followed the SSL Offloading guide from technet, which included unticking Require SSL for all the various objects in IIS (OWA, ECP, EWS, RPC etc.) 
  Additionally I made sure SSL Offloading was enabled for Outlook Anywhere in Powershell.  See for example output of Get-OutlookAnywhere:
  RunspaceId                         : 1bdf6a03-d43d-4478-84cc-95e18806b11b
  ServerName                         : TSTEXCG2013
  SSLOffloading                      : True
  ExternalHostname                   : tstowa.XXXX.com
  InternalHostname                   : tstowa.XXXX.com
  ExternalClientAuthenticationMethod : Ntlm
  InternalClientAuthenticationMethod : Ntlm
  IISAuthenticationMethods           : {Basic, Ntlm, Negotiate}
  XropUrl                            :
  ExternalClientsRequireSsl          : True
  InternalClientsRequireSsl          : True
  MetabasePath                       : IIS://TSTEXCG2013.tstXXX.tstXXXX.tst/W3SVC/1/ROOT/Rpc
  Path                               : D:\Program Files\Microsoft\Exchange Server\V15\FrontEnd\HttpProxy\rpc
  ExtendedProtectionTokenChecking    : None
  ExtendedProtectionFlags            : {}
  ExtendedProtectionSPNList          : {}
  AdminDisplayVersion                : Version 15.0 (Build 847.32)
  Server                             : TSTEXCG2013
  AdminDisplayName                   :
  ExchangeVersion                    : 0.20 (15.0.0.0)
  Name                               : Rpc (Default Web Site)
  DistinguishedName                  : CN=Rpc (Default Web
                                       Site),CN=HTTP,CN=Protocols,CN=TSTEXCG2013,CN=Servers,CN=Exchange
  Administrative
                                       Group (FYDIBOHF23SPDLT),CN=Administrative
  Groups,CN=XXX XXXX,CN=Microsoft
                                       Exchange,CN=Services,CN=Configuration,DC=tstXXXX,DC=tst
  Identity                           : TSTEXCG2013\Rpc (Default Web Site)
  Guid                               : 9b2bc5e2-41c1-4219-9186-8e6b8cb63dc0
  ObjectCategory                     : tstXXXX.tst/Configuration/Schema/ms-Exch-Rpc-Http-Virtual-Directory
  ObjectClass                        : {top, msExchVirtualDirectory, msExchRpcHttpVirtualDirectory}
  WhenChanged                        : 7/10/2014 7:38:58 PM
  WhenCreated                        : 6/23/2014 2:54:36 PM
  WhenChangedUTC                     : 7/11/2014 12:38:58 AM
  WhenCreatedUTC                     : 6/23/2014 7:54:36 PM
  OrganizationId                     :
  OriginatingServer                  : TSTXXXXDC02.tstXXXX.tst
  IsValid                            : True
  ObjectState                        : Changed

• Certificate error while connecting to multiple web service

  I am having a web service test client through which I can connects and get reports from multiple web services.
  In Development unix box, we are using "self-signed certificate" using keystore type JKS. In Production server, we are using certificate from CA.
  The web service is running in Development and in Production.
  Now I have developed single test client with a drop down selection for different web services. For example, if we select "Development", the request will go the development web service and if we select "Production", the request will go to Production web service.
  Now while connecting to Develpment service, we are settings the below certificates details Because we are using the self signed certificate.
  System.setProperty("javax.net.ssl.keyStore",keyStoreFileLocation);
  System.setProperty("javax.net.ssl.keyStorePassword",keyStorePassword);
  System.setProperty("javax.net.ssl.keyStoreType", keyStoreType);
  System.setProperty("javax.net.ssl.trustStoreType",trustStoreType);
  System.setProperty("javax.net.ssl.trustStore",trustStoreFileLocation);
  System.setProperty("javax.net.ssl.trustStorePassword",trustStorePassword);
  I am clearing the System properties using the System.clearProperty() while pointing to Production service. because in Production we are using the CA certificate from Thawte so these details are not required at all and our JRE (java 5) is pre configured to support that CA certificate.
  I am using Resin-2.1.12, axis1.2 and java5.
  Now the problem is
  (1) for the first time, when I send the request to Production Service URL, the report gets generated. For the next time when we are running against Development, it's giving below certificate error.
  sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target
  (2) Now restart resin and run the test client against Developemnt service URL, here report gets generated and for the next time, run the test client against Production, it's giving the certificate error.
  So for the 2nd request, it always gives the error irrespective of the web service instance selected.
  Please suggest ....thanks in advance.

  Hi  ,
  No, due to the issue is happening only on one computer.
  The error "(401) Unauthorized" usually indicates that the connection has been established but the permission check fails.  InfoPath Form Services uses the application pool identity of the web
  application to connect to resources.
  Does the account  which login the computer have permission to connect to User Profile Service Application?
  For a workaround, you can go to IIS Manager , set the User Profile Application Pool to Anonymous Access and try again.
  Also you can have a look at the blog:
  http://sharepointconnoisseur.blogspot.in/2011/04/how-to-resolve-401-unauthorized-error.html
  Best Regards,
  Eric
  Eric Tao
  TechNet Community Support

• ADF Mobile : Rest call to a webservice using https - Certificate Error

  I'm trying to connect to a web service giving json and which uses https. I am using the following code.
  Also SalesApp connects to https://abc.com
  RestServiceAdapter restServiceAdapter = Model.createRestServiceAdapter();
  restServiceAdapter.clearRequestProperties();
  restServiceAdapter.setConnectionName("SalesApp");
  restServiceAdapter.setRequestType(RestServiceAdapter.REQUEST_TYPE_GET);
  restServiceAdapter.setRetryLimit(0);
  restServiceAdapter.setRequestURI("/sales/rest/v1/resources");
  try {
  response = restServiceAdapter.send("");
  I am getting an error of " Certificate was issued by an unrecognized entity ".
  Is there anyway to ignore the certificate warning ? Any request properties which can help with this?
  I'm not looking at adding any private certificates/verfying the certificate issued by server, just want to ignore the warning
  and proceed with the rest call.

  Hi, sure you will need to register your private certificate with ADF Mobile's embedded JVM. This is a security mechanism - the JVM we embed will only recognize certificates from well-know CA out of box. However, you can register your private certificate with the JVM. The steps are described in the ADF Mobile Developer Guide: http://docs.oracle.com/cd/E35521_01/doc.111230/e24475/security.htm#CDDCCDFF.
  Please note that you will need to be very careful when registering the JVM - extra spaces for example will cause certificate error and it could be hard to diagnose. Please ensure all the fields matches exactly with your private certificate's fields.
  Thanks,
  Joe Huang

• Certificate error using webauth on guest wifi

  I am trying to setup a guest wifi.  We have our custom page package loaded and it looks great with our graphics, logo.  Basically you have to check a box and click accept to the terms of service, and then it forwards you through to VLAN 12 in this case, which is directed to an untangle software based firewall / router with its own outside IP address.
  The issue is that when you initially join the wireless network, the page at 1.1.1.1/login.htm throws a certificate error and you have to continue anyway (Internet Explorers language).
  Does this mean we need to put our wildcard certificate on it for our *.domain.com (GoDaddy signed) or does it need another kind of certificate?  What format would it need to be in (I have a pfx but can convert it if need be).
  We are not passing any credentials, so it doesn't NEED to be https, so under Management > HTTP-HTTPS I changed WebAuth SecureWeb to Disabled.  However when doing this, WebAuth is still putting https://1.1.1.1 and I get a page cannot be displayed. I  take the s out of https and then the webauth page works.
  So two things here, how could I just use it in http, or if preferred, what format and what kind of certificate needs to make https work in webauth?  This is primarily for vendors that visit, or guests in our waiting lobby with their tablets or smartphones.
  The WLC is a 5508 running 7.4.121.0.

  I also tried this site as well:
  http://www.packethead.net/2013/08/05/cisco-wlc-wireless-lan-controller-certificate-install-mac-os-x/
  I tried it command line, and it tftp's fine in all instances above but I get:
  TFTP Webauth cert transfer starting.
  TFTP receive complete... Installing Certificate.
  Error installing certificate.
  Might have to open a case with tac if this doesn't work.
  I have openssl 1.0.1j is that maybe a bad version? also every time I run it it says WARNING: can't open config file: /usr/local/ssl/openssl.cnf
  Well of course not, that is a *nix based bath and this is the 64-bit windows version.
  What I can get is a download from go daddy and the wildcard cert is already generated.  I cannot submit a new cert request.  We have this key and I've tried different ways of converting it with OpenSSL, I've imported it to windows and in the mmc for certificates exported in various formats.  Nothing will work with this WLC. 

• AIR Badge Install fails on Macromedia Certificate Error

  I noticed my AIR Badge installer stopped working with the message “A download error occurred, would you like to try again” when the person did not have Adobe AIR installed previously.  The badge installer is supposed to download AIR seamlessly as part of the process.
  I snooped with Charles and found that the loaded air.swf file was attempting to access https://www.macromedia.com and this request is returning a certificate error.  Attempting to access the url on my home machine directly using gives me the message that the cert is not from a trusted authority.  Attempting to access that url from my work machine results in a re-direct to Adobe.com.
  Anyone got a clue as to what the heck is going on? Am I dealing with an outdated version of the badge?  I got this from the Flex SDK 3.4 samples directory.
  Thanks,
  Jeff

  Rob,
  Thanks very much for getting back but the issue is resolved - I discovered
  that I was passing 1.52 instead of 1.5.2 for the required air version
  parameter.  D'oh.  Once that was set correctly the badge works fine.
  Jeff

• Firefox shows an unknown certificate error while Chrome does not for same site

  On a site at which Credit Card payment info is shown, Firefox is reporting a certificate error while Chrome does not. Prefer to use FF but need to know if warning is right or not. Have cleared the cache and still get the warning. This is new to FF as we've used it on this site for several years.

  HI khetheri,
  In order to better test the certificate may we request the certificate without the private keys? I have some backup from the security team if this is possible.
  There is a temporary work around as well but I don't recommend turning on all certificates to make sure it is not a compatibility error(ish)
  It is possible to check if it is being detected as a bad certificate in Firefox itself to eliminate compatibility issues.
  # In the [[Location bar autocomplete|Location bar]], type '''about:config''' and press '''Enter'''. The about:config "''This might void your warranty!''" warning page may appear.
  # Click '''I'll be careful, I promise!''', to continue to the about:config page.
  # Search for '''browser.xul.error_pages.expert_bad_cert ''' and set it to true to try the certificate normally.
  Looking forward to your reply!

• Help! Major "Security Certificate" Errors when browsing

  The various Mac Forums I've tried have attempted to help (can post their solutions if needed), but none worked. My issue occurs on ALL of my home computers (MacBook and iMac using wi-fi) and ALL of my browsers (Safari, Firefox, Chrome).
  The problem:
  - Security Certificates: They pop up daily for Facebook mostly, but also Twitter. I will click Continue, which takes me to...
  - 404 Error/Page Not Found Error: After the Certificate error mentioned above, this happens. Mostly to YouTube. It will stay like this for a few hours. I've cleared cache, rebooted, etc. etc. Nothing works.
  - Images turn into little blue boxes with a question mark in them. **When this happens, it's an indication that a Certificate box will pop up out of the blue.
  - Even on Google.com, it will say: Invalid URL
  The requested URL "/", is invalid.
  Reference #9.df260e6b.1336506889.420cf4f
  So what can I do? It happens on both my Macbook Pro and iMac - both connected wirelessly to a Linksys router/cable modem. The router is 
  Wireless-N Broadband Router
  WRT160Nv3
   with 
  Firmware Version: v3.0.02 

  1. Certificate warnings are there for a reason. Simply ignoring them and clicking continue is generally the worst you can do.
  2. For the a certificate warning, look into the certificate and post the details.
  3. What happens, if you connect the computer directly to the modem? Do you have the same problem?
  4. Download the latest firmware for your router and upload it to the router using the web interface at http://192.168.1.1/

• Outlook certificate errors from certificate on DSL modem.

  Hi,
  I have a client running Office 365 Small Business on a mix of Outlook 2007 and 2010 installs. We are getting certificate errors when using Outlook, and upon further investigation, I've found that the certificate it is seeing is from the DSL modem, showing
  Issued To: gateway.pace.com. I'm not working with a domain, I've double-checked everything in the DNS settings in-house and for the domain name. Also, the domain name is not in any way pointed to or set on the modem.
  Any help will be greatly appreciated!
  Thanks,
  Eric

  Hi,
  Is that different server an Exchange server? In the local Outlook 2013, please run Test E-mail AutoConfiguration tool to check if any services are using that namespace for service request. To run the tool, please do:
  please open Outlook - press CTRL key - right click on the Outlook icon from right bottom corner taskbar - Test Email AutoConfiguration. Put your email address - uncheck use guessmart and secure guessmart authentication - click Test to check your Autodiscover
  service.
  Then check the Results tab and Log tab for service namespace.
  In IE, please check the following settings for LAN:
  Click Settings > Internet Options > Connections > LAN settings, please make sure there is no proxy server set there. Only “Automatically detect settings” option is checked.
  Regards,
  Winnie Liang
  TechNet Community Support

• Facebook certificate error

  How do I fix a Facebook certificate error? I cannot use the website if I click continue or cancel.
  Invalid URL
  The requested URL "/", is invalid.
  Reference #9.6691db8.1407404854.65bab9d
  This is the message if I type in facebook to the address bar.

  From your Safari menu bar click Safari > Preferences then select the Privacy tab.
  Click:   Remove All Website Data
  Then delete the cache.
  Open a Finder window. From the Finder menu bar click Go > Go to Folder
  Type or copy paste the following
  ~/Library/Caches/com.apple.Safari/Cache.db
  Click Go then move the Cache.db file to the Trash.
  Quit and relaunch Safari to test.
  If nothing above helped, troubleshoot Safari extensions.
  From the Safari menu bar click Safari > Preferences then select the Extensions tab. Turn that OFF, quit and relaunch Safari to test.
  If that helped, turn one extension on then quit and relaunch Safari to test until you find the incompatible extension then click uninstall.

• Certificate errors with Exchange 2013 and Outlook 2013

  Hello, I wonder if someone could help.
  I've recently set up a network with one Windows 2012 domain controller and one windows 2012 server running Exchange 2013.
  Clients run Outlook 2013 and are all one the same Lan. Outlook's setup wizard finds the exchange server automatically and sets up the profile. However if I choose the manual setup and enter the server
  name and user name it does not find the server.
  When I check the server name in Outlook it shows as 
  [email protected] rather than the real name of the server: AYCEX01.AYC.local.
  When Outlook is opened there is a certificate error saying "The name on the security certificate is invalid or does not match the name of the site." and another error saying "There is
  a problem with the server's security certificate. The name on the security certificate is invalid or does not match the name of the target site mail.ardfernyacht.co.uk. Outlook is unable to connect to the proxy server. (Error code 10)
  The external address by which users connect to OWA and active sych is mail.ardfernyacht.co.uk. The
  certificate which is used is one automatically generated by Exchange.
  Any suggestions you may have would be appreciated.
  Many thanks,
  Ruaridh
  Ruaridh Mackintosh

  Self sign cert wont work With autodiscover.For that you need 3rd part or from Your own CA.
  Please follow this guide to install CA in Your domain:
  http://careexchange.in/how-to-install-certificate-authority-on-windows-server-2012/
  Please follow this guide to request New cert in Exchange 2013:
  http://exchangeserverpro.com/create-ssl-certificate-request-exchange-2013/
  Your cert must contain external hostname of Your mail.domain.com
  Also configure Your Virtual directories to contain internal and external hostname:
  http://blogs.msdn.com/b/mvpawardprogram/archive/2013/03/18/virtual-directories-exchange-2013.aspx
  Regarding servername when using autodiscover,it should automatically resolve mailbox guid instead of servername.
  Please check if Your DNS is setup With autodiscover.domain.local (which is pointed to Your Exchange server)
  Hope this helps!
  Please mark as helpful if you find my contribution useful or as an answer if it does answer your question. That will encourage me - and others - to take time out to help you. Thank you! Off2work

• Getting 0x80096004 (-2146869244) certificate error while accessing HTTPS web page on WM6.5

  Hi,
  We have a .net 3.5 application running on Windows Mobile (6.5) devices.  It communicates with the server side by making http web requests via https.  Lately same of our clients attempted to update their SSL certificates.  That resulted in 0x80096004
  (-2146869244) certificate errors in the .net code.  Internet Explorer on the device experienced the issue as well.
  It's really hard to find any information about this particular error code. Minfang's Blog on msdn.com says that, "0x80096004 means
  “The signature of the certificate cannot be verified”."  The author of this blog is talking about RSA keys being less than 1024bits that causes the error.  It is not the case here.  The problematic certificates were 2048bits, plus
  there are other 2048bit certificates that are not causing the problem.
  I've noticed that the not working certificates had sha256 signature hash algorithm.  I'm not certain abut that, but this hash algorithm may be the issue here (I red somewhere that sha2 family was not supported at least some time ago).
  How can I make my app work with the new certificates?  I know I can write my own CertificationPolicy and ignore that particular error, but it's not acceptable.
  Thank you,

  Hi arturm2,
  Please check this document About certificate errors
  And note the answer of these question:
  Why do certificate errors occur?
  What do the different certificate errors mean?
  So pelase to re-check your application with the new certificates.
  Best regards,
  Shu Hu
  We are trying to better understand customer views on social support experience, so your participation in this interview project would be greatly appreciated if you have time. Thanks for helping make community forums a great place.
  Click
  HERE to participate the survey.

• Certificate error while calling a webservices from application deployed in

  Hi,
  When we are trying to invoke a web service from a client application which was deployed in weblogic server we are getting the certificate error. We are using go daddy certificate. Here is the log file
  Anyone Please advice.
  FileName
  weblogic.log
  FileComment
  <Apr 25, 2011 1:51:15 PM EDT> <Notice> <Security> <BEA-090898> <Ignoring the trusted CA certificate "CN=*.wvu.edu,OU=Domain Control Validated,O=*.wvu.edu". The loading of the trusted certificate list raised a certificate parsing exception Could not set value for ASN.1 string object..>
  <Apr 25, 2011 1:51:15 PM EDT> <Notice> <Security> <BEA-090898> <Ignoring the trusted CA certificate "CN=*.wvu.edu,OU=Domain Control Validated,O=*.wvu.edu". The loading of the trusted certificate list raised a certificate parsing exception Could not set value for ASN.1 string object..>
  javax.xml.ws.WebServiceException: weblogic.wsee.wsdl.WsdlException: Failed to read wsdl file from url due to -- javax.net.ssl.SSLKeyException: FATAL Alert:BAD_CERTIFICATE - A corrupt or unuseable certificate was received.
  at weblogic.wsee.jaxws.spi.WLSProvider.readWSDL(WLSProvider.java:322)
  at weblogic.wsee.jaxws.spi.WLSProvider.createServiceDelegate(WLSProvider.java:77)
  at weblogic.wsee.jaxws.spi.WLSProvider.createServiceDelegate(WLSProvider.java:62)
  at javax.xml.ws.Service.<init>(Service.java:56)
  at wvudatacollection.wsproxy.scheduler.TimeClockScheduler_Service.<init>(TimeClockScheduler_Service.java:71)
  at wvudatacollection.wsproxy.scheduler.TimeClockSchedulerServiceWrapper.getStatus(TimeClockSchedulerServiceWrapper.java:96)
  at wvudatacollection.wsproxy.scheduler.GetSchedulerStatusWrapper.getStatusCode(GetSchedulerStatusWrapper.java:10)
  at sun.reflect.GeneratedMethodAccessor185.invoke(Unknown Source)
  at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
  at java.lang.reflect.Method.invoke(Method.java:597)
  at oracle.adf.model.binding.DCInvokeMethod.invokeMethod(DCInvokeMethod.java:561)
  at oracle.adf.model.binding.DCDataControl.invokeMethod(DCDataControl.java:2113)
  at oracle.adf.model.bc4j.DCJboDataControl.invokeMethod(DCJboDataControl.java:3009)
  at oracle.adf.model.bean.DCBeanDataControl.invokeMethod(DCBeanDataControl.java:436)
  at oracle.adf.model.binding.DCInvokeMethod.callMethod(DCInvokeMethod.java:256)
  at oracle.jbo.uicli.binding.JUCtrlActionBinding.doIt(JUCtrlActionBinding.java:1437)
  at oracle.adf.model.binding.DCDataControl.invokeOperation(DCDataControl.java:2120)
  at oracle.adf.model.bean.DCBeanDataControl.invokeOperation(DCBeanDataControl.java:464)
  at oracle.adf.model.adapter.AdapterDCService.invokeOperation(AdapterDCService.java:307)
  at oracle.jbo.uicli.binding.JUCtrlActionBinding.invoke(JUCtrlActionBinding.java:693)
  at oracle.adf.model.binding.DCInvokeAction.refreshInternal(DCInvokeAction.java:47)
  at oracle.adf.model.binding.DCInvokeAction.refresh(DCInvokeAction.java:33)
  at oracle.adf.model.binding.DCBindingContainer.internalRefreshControl(DCBindingContainer.java:3107)
  at oracle.adf.model.binding.DCBindingContainer.refresh(DCBindingContainer.java:2759)
  at oracle.adf.controller.internal.binding.TaskFlowRegionController.refreshRegion(TaskFlowRegionController.java:145)
  at oracle.adf.model.binding.DCBindingContainer.internalRefreshControl(DCBindingContainer.java:3038)
  at oracle.adf.model.binding.DCBindingContainer.refresh(DCBindingContainer.java:2759)
  at oracle.adf.controller.v2.lifecycle.PageLifecycleImpl.prepareRender(PageLifecycleImpl.java:548)
  at oracle.adf.controller.v2.lifecycle.Lifecycle$9.execute(Lifecycle.java:224)
  at oracle.adfinternal.controller.lifecycle.LifecycleImpl.executePhase(LifecycleImpl.java:192)
  at oracle.adfinternal.controller.faces.lifecycle.ADFPhaseListener.mav$executePhase(ADFPhaseListener.java:21)
  at oracle.adfinternal.controller.faces.lifecycle.ADFPhaseListener$5.before(ADFPhaseListener.java:395)
  at oracle.adfinternal.controller.faces.lifecycle.ADFPhaseListener.beforePhase(ADFPhaseListener.java:60)
  at oracle.adfinternal.controller.faces.lifecycle.ADFLifecyclePhaseListener.beforePhase(ADFLifecyclePhaseListener.java:44)
  at oracle.adfinternal.view.faces.lifecycle.LifecycleImpl._executePhase(LifecycleImpl.java:246)
  at oracle.adfinternal.view.faces.lifecycle.LifecycleImpl.render(LifecycleImpl.java:193)
  at javax.faces.webapp.FacesServlet.service(FacesServlet.java:266)
  at weblogic.servlet.internal.StubSecurityHelper$ServletServiceAction.run(StubSecurityHelper.java:227)
  at weblogic.servlet.internal.StubSecurityHelper.invokeServlet(StubSecurityHelper.java:125)
  at weblogic.servlet.internal.ServletStubImpl.execute(ServletStubImpl.java:292)
  at weblogic.servlet.internal.TailFilter.doFilter(TailFilter.java:26)
  at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
  at oracle.adf.model.servlet.ADFBindingFilter.doFilter(ADFBindingFilter.java:191)
  at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
  at oracle.adfinternal.view.faces.webapp.rich.RegistrationFilter.doFilter(RegistrationFilter.java:85)
  at org.apache.myfaces.trinidadinternal.webapp.TrinidadFilterImpl$FilterListChain.doFilter(TrinidadFilterImpl.java:420)
  at oracle.adfinternal.view.faces.activedata.AdsFilter.doFilter(AdsFilter.java:54)
  at org.apache.myfaces.trinidadinternal.webapp.TrinidadFilterImpl$FilterListChain.doFilter(TrinidadFilterImpl.java:420)
  at org.apache.myfaces.trinidadinternal.webapp.TrinidadFilterImpl._doFilterImpl(TrinidadFilterImpl.java:247)
  at org.apache.myfaces.trinidadinternal.webapp.TrinidadFilterImpl.doFilter(TrinidadFilterImpl.java:157)
  at org.apache.myfaces.trinidad.webapp.TrinidadFilter.doFilter(TrinidadFilter.java:92)
  at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
  at oracle.security.jps.wls.JpsWlsFilter$1.run(JpsWlsFilter.java:96)
  at java.security.AccessController.doPrivileged(Native Method)
  at oracle.security.jps.util.JpsSubject.doAsPrivileged(JpsSubject.java:313)
  at oracle.security.jps.wls.util.JpsWlsUtil.runJaasMode(JpsWlsUtil.java:146)
  at oracle.security.jps.wls.JpsWlsFilter.doFilter(JpsWlsFilter.java:140)
  at oracle.security.jps.ee.http.JpsFilter.doFilter(JpsFilter.java:70)
  at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
  at oracle.dms.wls.DMSServletFilter.doFilter(DMSServletFilter.java:202)
  at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
  at weblogic.servlet.internal.RequestEventsFilter.doFilter(RequestEventsFilter.java:27)
  at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
  at weblogic.servlet.internal.WebAppServletContext$ServletInvocationAction.run(WebAppServletContext.java:3588)
  at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:321)
  at weblogic.security.service.SecurityManager.runAs(SecurityManager.java:121)
  at weblogic.servlet.internal.WebAppServletContext.securedExecute(WebAppServletContext.java:2200)
  at weblogic.servlet.internal.WebAppServletContext.execute(WebAppServletContext.java:2106)
  at weblogic.servlet.internal.ServletRequestImpl.run(ServletRequestImpl.java:1428)
  at weblogic.work.ExecuteThread.execute(ExecuteThread.java:201)
  at weblogic.work.ExecuteThread.run(ExecuteThread.java:173)
  Caused by: weblogic.wsee.wsdl.WsdlException: Failed to read wsdl file from url due to -- javax.net.ssl.SSLKeyException: FATAL Alert:BAD_CERTIFICATE - A corrupt or unuseable certificate was received.
  at weblogic.wsee.wsdl.WsdlReader.getDocument(WsdlReader.java:313)
  at weblogic.wsee.wsdl.WsdlReader.getDocument(WsdlReader.java:305)
  at weblogic.wsee.jaxws.spi.WLSProvider.readWSDL(WLSProvider.java:312)
  ... 70 more
  Caused by: javax.net.ssl.SSLKeyException: FATAL Alert:BAD_CERTIFICATE - A corrupt or unuseable certificate was received.
  at com.certicom.tls.interfaceimpl.TLSConnectionImpl.fireException(Unknown Source)
  at com.certicom.tls.interfaceimpl.TLSConnectionImpl.fireAlertSent(Unknown Source)
  at com.certicom.tls.record.handshake.HandshakeHandler.fireAlert(Unknown Source)
  at com.certicom.tls.record.handshake.HandshakeHandler.fireAlert(Unknown Source)
  at com.certicom.tls.record.handshake.ClientStateReceivedServerHello.handle(Unknown Source)
  at com.certicom.tls.record.handshake.HandshakeHandler.handleHandshakeMessage(Unknown Source)
  at com.certicom.tls.record.handshake.HandshakeHandler.handleHandshakeMessages(Unknown Source)
  at com.certicom.tls.record.MessageInterpreter.interpretContent(Unknown Source)
  at com.certicom.tls.record.MessageInterpreter.decryptMessage(Unknown Source)
  at com.certicom.tls.record.ReadHandler.processRecord(Unknown Source)
  at com.certicom.tls.record.ReadHandler.readRecord(Unknown Source)
  at com.certicom.tls.record.ReadHandler.readUntilHandshakeComplete(Unknown Source)
  at com.certicom.tls.interfaceimpl.TLSConnectionImpl.completeHandshake(Unknown Source)
  at com.certicom.tls.record.WriteHandler.write(Unknown Source)
  at com.certicom.io.OutputSSLIOStreamWrapper.write(Unknown Source)
  at java.io.BufferedOutputStream.flushBuffer(BufferedOutputStream.java:65)
  at java.io.BufferedOutputStream.flush(BufferedOutputStream.java:123)
  at java.io.FilterOutputStream.flush(FilterOutputStream.java:123)
  at weblogic.net.http.HttpURLConnection.writeRequests(HttpURLConnection.java:154)
  at weblogic.net.http.HttpURLConnection.getInputStream(HttpURLConnection.java:358)
  at weblogic.net.http.SOAPHttpsURLConnection.getInputStream(SOAPHttpsURLConnection.java:37)
  at weblogic.wsee.util.is.InputSourceUtil.loadURL(InputSourceUtil.java:103)
  at weblogic.wsee.util.dom.DOMParser.getWebLogicDocumentImpl(DOMParser.java:118)
  at weblogic.wsee.util.dom.DOMParser.getDocument(DOMParser.java:65)
  at weblogic.wsee.wsdl.WsdlReader.getDocument(WsdlReader.java:311)
  ... 72 more
  Thanks,
  Sajja
  Edited by: user13514455 on Jun 13, 2011 8:35 AM

  We resolved this problem for the same version of JDeveloper in the WebLogic Console. In the Domain Structure / Evironment / Servers / Settings for Default Server, click the Configuration and SSL tabs. Then change Hostname Verification to None and check the Use JSSE SSL box at the bottom.

• How do I remove the certificat error everytime I try to access the Cisco Unified CM Administration web-page?

  Hi,
  Every time I want to have access to the Cisco Unified CM Console (System version: 7.0.1.11000-2), I use the https://10.10.x.x/ccmadmin/showHome.do homepage on my client computer, but when I open the page, I get a SSL certificate error, stating no trust to this webpage security certificate and if I those "continue to this page (not recommended)", I get access to the Cisco Unified CM Console web page.
  I have tried to add the https://IP-adress to secure web pages in Internet Explorer 7, but this to no avail, it does not help.
  How do I add this certificate to a trusted something, so I do not get this warning every time I open the page?
  Kind regards,
  Carl-Marius

  Hi Michael,
  It worked when I change the IP-address to the name that was written in the certificate, and imported the certificate to Internet Explorer.
  Thank you for your fast and very precise help!
  Kind regards,
  Carl-Marius

• Certificate error when try to send mail

  Masters,
  First of all sorry for my poor english. Im not IT specialist, so please ...
  I need help to fix my problem. I know there are many post with this but i can't figure out.
  We had a working enviroment with no certificate issue.
  I tried to set the Outlook Anywhere, and so i messed up something. Now if user open outlook and send / or reply a mail got a certificate error message. I don't care Outlook Anyhere anymore but i need to fix my issue...
  I have not enough reputation point, so i can't attach image. I used Snag to attach picture.
  Certification error message:
  This is how exchange certs looks like:
  The problem is occure when start outlook and start or reply a mail. Certfication error pop-up, and inside the message windows on the Certification Chain tab i see: "mydomain".local
  When i try to configure outlook anywhere i create and enable new certificate. I think when i did this i have to allow owerrite some service... I deleted that certification already.
  If i install the cert to root CA, then works ok. But i don't want to install it all our server, because its workd earlier. How can i fix this?
  Thank you

  Hello,
   First of all thank you for helpin' me.
   I do not want to use outlook anywhere anymore, but now i know need 3rd certf for work...
   Only i want to get back everything.
   I know if i install to root CA than pop up disappear (i test this one of our server) but because earlier we have no installed this cert...so i don't understand what should i did...
    1. i installed a new self-sign certificate and associate service SMTP for it.
    2. after all test failed i decided to delete this cert...
    3. now outlook get pop up with certificated issued by: ourcompany.local
               - i did not seen any certificate in the certificate store with this name...
   Now i test it again and the no pop up in outlook?! What happend? I check and the mentioned certificate not in the store?!
   If i delete a certificate and assign service to another one, how many time need to affect this to the enviroment?
  Thank you