Yosemite Mail 10.10.2 - SSL port, Certificate not trusted, email can't be seen

Hi All,
Thanks in advance for your help.
I have just upgraded  (quite regrettably) to Yosemite 10.10.2 with a clean install (Time machine... that's a whole new bag of tricks hasn't worked can't even reinstall mail via TimeMachine RESTORE.. very helpful apple)
Mail – The simplest of software, is causing no end of problems:
PROBLEMS:
1) When mail opens, it kept saying "Certificate for this server is invalid"
2) The 2 email accounts I have, keep going offline? NEVER had this on any of the macs i've had set up before ran 10.6.8 for ages not a blip?
3) And another glorious trick, even if the email accounts aren't showing any exclamation marks (about being off line)
I select any mail box AND out of nowhere, no emails show in the mail boxes, where only 10 seconds ago they were all there?
4) REPLY ALL just a few moments ago DIDN'T work or reply to all
NOW, it either replies to ALL including me (the original sender) OR it'll place the original sender email address in TO and all others in CC? when all emails were in the TO field?
Just to be clear: I have set up 2 email accounts as IMAP on the mac (Say email X and email Y), and have tested by sending an email FROM email X TO email Y and a hotmail account, just to have more than 1 email address in the to field to see what happens with the REPLY ALL. It doesn't work suffice to say
SOLUTIONS TRIED BUT NOT WORKED SO FAR
I have scoured the forums and tried a few suggested things
1) I have 2 email accounts, both of which I'm setting up as IMPA,  my ISP Tech support for email host has said "Set the SSL port to 587"
– Tried doing that in 2 places
a) Mail > Accounts > (select email account) > Advanced  There under PORT stated 587
b)  Mail > Preferences > Accounts (select account) > Advanced > PORT And here it is NOT the stated 587, it's (currently) 143?
(I've tried changing this to 587) and this doesn't solve the problem(s)
2) I tried UNTICKING "automatically detect and maintain account settings". but this didn't solve anything, and the whole certificate error and Mail going offline started up pretty much instantly
3) Tried ticking the "Allow Insecure authentication" - Again, no solution?
4) I did have my gmail account set up, but took that out of the equation as that wasn't helping, and with that I couldn't hit REPLY ALL and it show up in the TO field????
I appreciate this is a lot of information on the screen, but i've tried to be as through as I can, and seriously I CANNOT believe Apple have managed to mess up a corner stone app that should Just work?
Thanks agin for any help or pointers.
Mypetshadow

CAVEAT:
1)I'm not technically qualified, but thought i should share the info I have found that works for me after having a tech guy from the ISP sort out the settings to get my main running:
2) This has been working for all of 2 hours... lets hope it stays that way.
3) My emails are set up as IMAP accounts.
So....
After speaking / emailing with my ISP and after 4 days of what seems like ****... (Seriously, thanks Apple "it just works.... like a hole in the head") I have a few solutions that are working for me and thought I would post them up for people who maybe having the same difficulty...
SSL PORTS AND CERTIFICATES ISSUE
1) Once you "CREATE' an email account, you have to adjust the settings manually (No surprise there)
• There are some people saying you have to UNTICK the "Automatically detect and maintain my account settings"
• (I'm NOT a techie kinda guy), BUT in my case I LEFT THIS CHECKED (on advise from the ISP tech guy), and for me it is working. The tech guy from my ISP said something on the lines of  "If the PORT is 993 then SSL has to be checked, If it's port 143 the SSL IS UNCHECKED"
Again, i'm not a techie, but this may be of relevance to you.
Screen grab of the main IMAP settings page
2) EDITING the SMTP settings
• MAIL > PREFERENCES > ACCOUNTS > select your newly created account > ACCOUNT INFORMATION TAB
– From the OUTGOING MAIN SERVER Dropdown list, Select EDIT SMTP SERVER LIST and change your port to 465 (note: Originally port was 587... read below)
Here, SSL WAS CHECKED, as was "Automatically detect and maintain account settings".
REPLY ALL MOVES EMAILS INTO THE CC FIELD
• Originally the port was set at 587 BUT I noticed a glitch; when I hit reply all, this would put all email addresses that were in the TO field into the CC field? (excluding the original sender...) Not helpful.
• I noticed  (in an earlier mess up and moving around of ports etc) that when the port was changed to 465 (another port that the ISP tech guys said was an option) my email started behaving as expected... emails in the TO field stay in the TO field, as expected. and not placed in the CC field
Screen grab of the SMTP edit page:
Right, that's my non-techie tuppence and hope that it is of some help, and if not specifically all you need, it might give a few clues.
Cheers

Similar Messages

  • BT Mail SSl Security Certificate NOT trusted

    Anyone explain this:
    Solved!
    Go to Solution.

    Seriously love to mark as 'accepted solution' the fact that MS have not updated their ruleset but then the thought occurs whose responsibility is it to tell MS the yahooca ssl certificate has been updated?
    Surely this is BT's as the provider and/or yahooca's responsibility as they are the original providers and maintainers of the original and changed SSL certificates.
    So come on BT as the world's largest providers of information technology surely someone can send one lousy email to MS telling them about the new certificate?
    Just one email from BT is all it would take. Then all these real and actual security breaches for logging into BT Mail would disappear and logging in would be safe and secure. As it stands with the SSL certificate mismatch there's no way BT can guarantee this.
    After all there's no point in having an SSL certicate if it means nothing to the end users security as they login to their mailbox. Does it?

  • Certificate not Trusted Exception

    Hi,
    I am trying to invoke Axis soap call from webshpere (my requirement is to trust all certificates), but getting certificate not trusted exception. Appreciate any suggestions for fixing this issue.
    Code:
    public String transport(String strMessage, String strParticipantUrl, String methodName, String keyStorePwd) throws RouterException {
         String result = null;
         boolean isErrorOccured = false;
         String errorMessage = null;
         LOGGER.info("Calling Carrier Web Service.......");
         LOGGER.info("Web Service URL is :" + strParticipantUrl);
         LOGGER.info("Web Service Method Name is :" + methodName);
         ServiceFactory serviceFactory = new ServiceFactory();
         Service service = null;
         try {
              service = (Service) serviceFactory.createService(new QName(
              FundTransferConstants.QNAME_SERVICE));
              } catch (ServiceException e) {
              isErrorOccured = true;
         Integer connectionTimeOut = FundTransferContext.getInstance()
         .getConnectionTimeOut();
         org.apache.axis.client.Call call = null;
         if (null != service) {
              try {
                   LOGGER.info("setting ssl status to debug");
                   System.setProperty("javax.ssl.debug", "all");
                   String proxyHost = FundTransferUtil.getProperty("PROXY.HOST");
                   String proxyPort = FundTransferUtil.getProperty("PROXY.PORT");
                   String username = FundTransferUtil.getProperty("PROXY.USER");
                   String password = FundTransferUtil
                   .getProperty("PROXY.PASSWORD");
                   if (proxyHost != null && !"".equals(proxyHost)) {
                   System.setProperty("proxySet", "true");
                   System.setProperty("http.proxyHost", proxyHost);
                   if (proxyPort != null && !"".equals(proxyHost)) {
                        System.setProperty("http.proxyPort", proxyPort);
                   if (username != null && !"".equals(username)) {
                        System.setProperty("http.proxyUser", username);
                   if (password != null && !"".equals(password)) {
                        System.setProperty("http.proxyPassword", password);
                   String keyStoreLocation = FundTransferUtil
                   .getProperty("KEYSTORE_LOCATION");
                   String keystore = keyStoreLocation + "/"
                   + FundTransferConstants.KEYSTORE_FILE_NAME;
                   String storetype = FundTransferConstants.KEYSTORE_FILE_TYPE;
                   String][ props = {
                   { FundTransferConstants.TRUST_STORE, keystore, },
                   { FundTransferConstants.KEY_STORE, keystore, },
                   { FundTransferConstants.KEY_STORE_PWD, keyStorePwd, },
                   { FundTransferConstants.KEY_STORE_TYPE, storetype, },
                   { FundTransferConstants.TRUST_STORE_PWD, keyStorePwd, }, };
                   // Commented loading the keystore to test outbound calls
                   /*for (int index = 0; index < props.length; index++)
                   System.getProperties().setProperty(propsindex[0],
                   propsindex[1]);*/
                   // Commented all trusting trust manager
                   /*LOGGER.info("Creating TrustManager...");
                   TrustManager] trustAllCerts = new TrustManager[ { new X509TrustManager() {
                   public java.security.cert.X509Certificate[] getAcceptedIssuers() {
                   LOGGER.info("Acception all issuers");
                   return null;
                   public void checkClientTrusted(
                   java.security.cert.X509Certificate[] certs,
                   String authType) {
                   LOGGER.info("checkClientTrusted method");
                   public void checkServerTrusted(
                   java.security.cert.X509Certificate[] certs,
                   String authType) {
                   LOGGER.info("checkServerTrusted method");
                   // Install the all-trusting trust manager
                   try {
                        LOGGER.info("Creating SSLContext...");
                        SSLContext sc = SSLContext.getInstance("SSL");
                        LOGGER.info("Created SSLContext..." + sc);
                        sc.init(null, trustAllCerts,
                        new java.security.SecureRandom());
                        LOGGER.info("Created SSLContext initiated...");
                        LOGGER.info("sslDefaultSocketFactory......"
                        + sc.getSocketFactory());
                        HttpsURLConnection.setDefaultSSLSocketFactory(sc
                        .getSocketFactory());
                        LOGGER.info("sslDefaultSocketFactory......"
                        + sc.getSocketFactory());
                   } catch (Exception e) {
                   LOGGER.error("Exception is occuring...");
                   LOGGER.error(e.getMessage());
              call = (Call) service.createCall();
         } catch (ServiceException ex) {
         LOGGER.error(ex.getMessage());
              errorMessage = ex.getMessage();
              isErrorOccured = true;
         if (null != call) {
              LOGGER.info("Web Service TimeOut setting :"
              + connectionTimeOut.intValue());
              LOGGER.info("Setting axis propeties to use IBMFakeTrustSocketFactory");
              // This will allow web service requests using the HTTPS protocol without having a valid SSL certificate installed and configured.
              AxisProperties.setProperty("axis.socketSecureFactory","org.apache.axis.components.net.IBMFakeTrustSocketFactory");
              call.setTimeout(connectionTimeOut);
              call.setTargetEndpointAddress(strParticipantUrl);
              call.setProperty(Call.SOAPACTION_USE_PROPERTY,
              new Boolean(true));
              call.setProperty(Call.SOAPACTION_URI_PROPERTY,
              FundTransferConstants.EMPTY_STRING);
              QName qnameTypeStr = new QName(FundTransferConstants.NS_XSD,
              FundTransferConstants.QNAME_TYPE);
              QName header = new QName(FundTransferConstants.NS_XSD,
              FundTransferConstants.QNAME_TYPE);
              call.setReturnType(qnameTypeStr);
              call
              .setOperationStyle(FundTransferConstants.WEB_SERVICE_OPERATION_RPC_STYLE);
              call
              .setOperationName(new QName(
              FundTransferConstants.BODY_NAMESPACE_VALUE,
              methodName));
              call.addParameter("String_1", qnameTypeStr, ParameterMode.IN);
              String[] params = { strMessage };
              if (FundTransferConstants.CARRIER_RESEND_METHOD
              .equalsIgnoreCase(methodName)) {
                   try {
                        call.invoke(params);
                   } catch (Exception ex) {
                        errorMessage = ex.getMessage();
                        isErrorOccured = true;
                        LOGGER.info(ex.getMessage());
              } else {
              int counter = 0;
              while (counter < 3) {
              counter++;
              try {
                   // Here making the call which is failing
                   result = (String) call.invoke(params);
                   counter = 4;
              } catch (AxisFault axisFault) {
                   axisFault.printStackTrace();
                   errorMessage = axisFault.getMessage();
                   isErrorOccured = true;
                   LOGGER.error(axisFault.getMessage());
              } catch (Exception ex) {
                   ex.printStackTrace();
                   errorMessage = ex.getMessage();
                   isErrorOccured = true;
    if (isErrorOccured) {
    throw new RouterException(errorMessage);
    return result;
    System Error:
    12/7/07 13:43:41:639 EST 000000bb SystemErr R AxisFault
    faultCode: {http://schemas.xmlsoap.org/soap/envelope/}Server.userException
    faultSubcode:
    faultString: javax.net.ssl.SSLHandshakeException: java.security.cert.CertificateException: Certificate not Trusted
    faultActor:
    faultNode:
    faultDetail:
    {http://xml.apache.org/axis/}stackTrace: javax.net.ssl.SSLHandshakeException: java.security.cert.CertificateException: Certificate not Trusted
    at com.ibm.jsse2.bx.a(bx.java(Compiled Code))
    at com.ibm.jsse2.by.a(by.java(Compiled Code))
    at com.ibm.jsse2.by.a(by.java:473)
    at com.ibm.jsse2.w.a(w.java(Compiled Code))
    at com.ibm.jsse2.w.a(w.java(Compiled Code))
    at com.ibm.jsse2.v.a(v.java(Compiled Code))
    at com.ibm.jsse2.by.a(by.java(Compiled Code))
    at com.ibm.jsse2.by.l(by.java(Compiled Code))
    at com.ibm.jsse2.by.startHandshake(by.java(Compiled Code))
    at org.apache.axis.components.net.JSSESocketFactory.create(JSSESocketFactory.java:224)
    at org.apache.axis.transport.http.HTTPSender.getSocket(HTTPSender.java:157)
    at org.apache.axis.transport.http.HTTPSender.invoke(HTTPSender.java:114)
    at org.apache.axis.strategies.InvocationStrategy.visit(InvocationStrategy.java:71)
    at org.apache.axis.SimpleChain.doVisiting(SimpleChain.java:150)
    at org.apache.axis.SimpleChain.invoke(SimpleChain.java:120)
    at org.apache.axis.client.AxisClient.invoke(AxisClient.java:180)
    at org.apache.axis.client.Call.invokeEngine(Call.java:2564)
    at org.apache.axis.client.Call.invoke(Call.java:2553)
    at org.apache.axis.client.Call.invoke(Call.java:2248)
    at org.apache.axis.client.Call.invoke(Call.java:2171)
    at org.apache.axis.client.Call.invoke(Call.java:1691)
    at com.dtcc.insurance.fundtransfer.transport.TransportHandler.transport(TransportHandler.java:245)
    at com.dtcc.insurance.fundtransfer.router.MessageRouter.transport(MessageRouter.java:112)
    at com.dtcc.insurance.fundtransfer.controller.MessageController.processMessage(MessageController.java:155)
    at com.dtcc.insurance.fundtransfer.service.FundTransferServiceImpl.fundTransferRequest(FundTransferServiceImpl.java:88)
    at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
    at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java(Compiled Code))
    at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java(Compiled Code))
    at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java(Compiled Code))
    at java.lang.reflect.Method.invoke(Method.java(Compiled Code))
    at org.apache.axis.providers.java.RPCProvider.invokeMethod(RPCProvider.java:402)
    at org.apache.axis.providers.java.RPCProvider.processMessage(RPCProvider.java:309)
    at org.apache.axis.providers.java.JavaProvider.invoke(JavaProvider.java:333)
    at org.apache.axis.strategies.InvocationStrategy.visit(InvocationStrategy.java:71)
    at org.apache.axis.SimpleChain.doVisiting(SimpleChain.java:150)
    at org.apache.axis.SimpleChain.invoke(SimpleChain.java:120)
    at org.apache.axis.handlers.soap.SOAPService.invoke(SOAPService.java:481)
    at org.apache.axis.server.AxisServer.invoke(AxisServer.java:323)
    at org.apache.axis.transport.http.AxisServlet.doPost(AxisServlet.java:854)
    at javax.servlet.http.HttpServlet.service(HttpServlet.java:763)
    at org.apache.axis.transport.http.AxisServletBase.service(AxisServletBase.java:339)
    at javax.servlet.http.HttpServlet.service(HttpServlet.java:856)
    at com.ibm.ws.webcontainer.servlet.ServletWrapper.service(ServletWrapper.java:1572)
    at com.ibm.ws.webcontainer.servlet.ServletWrapper.handleRequest(ServletWrapper.java:762)
    at com.ibm.ws.webcontainer.webapp.WebApp.handleRequest(WebApp.java:3174)
    at com.ibm.ws.webcontainer.webapp.WebGroup.handleRequest(WebGroup.java:253)
    at com.ibm.ws.webcontainer.VirtualHost.handleRequest(VirtualHost.java:229)
    at com.ibm.ws.webcontainer.WebContainer.handleRequest(WebContainer.java:1970)
    at com.ibm.ws.webcontainer.channel.WCChannelLink.ready(WCChannelLink.java:114)
    at com.ibm.ws.http.channel.inbound.impl.HttpInboundLink.handleDiscrimination(HttpInboundLink.java:472)
    at com.ibm.ws.http.channel.inbound.impl.HttpInboundLink.handleNewInformation(HttpInboundLink.java:411)
    at com.ibm.ws.http.channel.inbound.impl.HttpInboundLink.ready(HttpInboundLink.java:288)
    at com.ibm.ws.ssl.channel.impl.SSLConnectionLink.determineNextChannel(SSLConnectionLink.java:950)
    at com.ibm.ws.ssl.channel.impl.SSLConnectionLink$MyReadCompletedCallback.complete(SSLConnectionLink.java:582)
    at com.ibm.ws.ssl.channel.impl.SSLReadServiceContext$SSLReadCompletedCallback.complete(SSLReadServiceContext.java:1704)
    at com.ibm.ws.tcp.channel.impl.WorkQueueManager.requestComplete(WorkQueueManager.java(Compiled Code))
    at com.ibm.ws.tcp.channel.impl.WorkQueueManager.attemptIO(WorkQueueManager.java(Compiled Code))
    at com.ibm.ws.tcp.channel.impl.WorkQueueManager.workerRun(WorkQueueManager.java(Compiled Code))
    at com.ibm.ws.tcp.channel.impl.WorkQueueManager$Worker.run(WorkQueueManager.java(Compiled Code))
    at com.ibm.ws.util.ThreadPool$Worker.run(ThreadPool.java(Compiled Code))
    Caused by: java.security.cert.CertificateException: Certificate not Trusted
    at com.ibm.jsse.bi.a(Unknown Source)
    at com.ibm.jsse.bi.checkServerTrusted(Unknown Source)
    at com.ibm.jsse2.ba.checkServerTrusted(ba.java:16)
    ... 57 more
    12/7/07 13:43:41:640 EST 000000bb SystemErr R AxisFault
    faultCode: {http://schemas.xmlsoap.org/soap/envelope/}Server.userException
    faultSubcode:
    faultString: javax.net.ssl.SSLHandshakeException: java.security.cert.CertificateException: Certificate not Trusted
    faultActor:
    faultNode:
    faultDetail:
    {http://xml.apache.org/axis/}stackTrace: javax.net.ssl.SSLHandshakeException: java.security.cert.CertificateException: Certificate not Trusted
    at com.ibm.jsse2.bx.a(bx.java(Compiled Code))
    at com.ibm.jsse2.by.a(by.java(Compiled Code))
    at com.ibm.jsse2.by.a(by.java:473)
    at com.ibm.jsse2.w.a(w.java(Compiled Code))
    at com.ibm.jsse2.w.a(w.java(Compiled Code))
    at com.ibm.jsse2.v.a(v.java(Compiled Code))
    at com.ibm.jsse2.by.a(by.java(Compiled Code))
    at com.ibm.jsse2.by.l(by.java(Compiled Code))
    at com.ibm.jsse2.by.startHandshake(by.java(Compiled Code))
    at org.apache.axis.components.net.JSSESocketFactory.create(JSSESocketFactory.java:224)
    at org.apache.axis.transport.http.HTTPSender.getSocket(HTTPSender.java:157)
    at org.apache.axis.transport.http.HTTPSender.invoke(HTTPSender.java:114)
    at org.apache.axis.strategies.InvocationStrategy.visit(InvocationStrategy.java:71)
    at org.apache.axis.SimpleChain.doVisiting(SimpleChain.java:150)
    at org.apache.axis.SimpleChain.invoke(SimpleChain.java:120)
    at org.apache.axis.client.AxisClient.invoke(AxisClient.java:180)
    at org.apache.axis.client.Call.invokeEngine(Call.java:2564)
    at org.apache.axis.client.Call.invoke(Call.java:2553)
    at org.apache.axis.client.Call.invoke(Call.java:2248)
    at org.apache.axis.client.Call.invoke(Call.java:2171)
    at org.apache.axis.client.Call.invoke(Call.java:1691)
    at com.dtcc.insurance.fundtransfer.transport.TransportHandler.transport(TransportHandler.java:245)
    at com.dtcc.insurance.fundtransfer.router.MessageRouter.transport(MessageRouter.java:112)
    at com.dtcc.insurance.fundtransfer.controller.MessageController.processMessage(MessageController.java:155)
    at com.dtcc.insurance.fundtransfer.service.FundTransferServiceImpl.fundTransferRequest(FundTransferServiceImpl.java:88)
    at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
    at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java(Compiled Code))
    at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java(Compiled Code))
    at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java(Compiled Code))
    at java.lang.reflect.Method.invoke(Method.java(Compiled Code))
    at org.apache.axis.providers.java.RPCProvider.invokeMethod(RPCProvider.java:402)
    at org.apache.axis.providers.java.RPCProvider.processMessage(RPCProvider.java:309)
    at org.apache.axis.providers.java.JavaProvider.invoke(JavaProvider.java:333)
    at org.apache.axis.strategies.InvocationStrategy.visit(InvocationStrategy.java:71)
    at org.apache.axis.SimpleChain.doVisiting(SimpleChain.java:150)
    at org.apache.axis.SimpleChain.invoke(SimpleChain.java:120)
    at org.apache.axis.handlers.soap.SOAPService.invoke(SOAPService.java:481)
    at org.apache.axis.server.AxisServer.invoke(AxisServer.java:323)
    at org.apache.axis.transport.http.AxisServlet.doPost(AxisServlet.java:854)
    at javax.servlet.http.HttpServlet.service(HttpServlet.java:763)
    at org.apache.axis.transport.http.AxisServletBase.service(AxisServletBase.java:339)
    at javax.servlet.http.HttpServlet.service(HttpServlet.java:856)
    at com.ibm.ws.webcontainer.servlet.ServletWrapper.service(ServletWrapper.java:1572)
    at com.ibm.ws.webcontainer.servlet.ServletWrapper.handleRequest(ServletWrapper.java:762)
    at com.ibm.ws.webcontainer.webapp.WebApp.handleRequest(WebApp.java:3174)
    at com.ibm.ws.webcontainer.webapp.WebGroup.handleRequest(WebGroup.java:253)
    at com.ibm.ws.webcontainer.VirtualHost.handleRequest(VirtualHost.java:229)
    at com.ibm.ws.webcontainer.WebContainer.handleRequest(WebContainer.java:1970)
    at com.ibm.ws.webcontainer.channel.WCChannelLink.ready(WCChannelLink.java:114)
    at com.ibm.ws.http.channel.inbound.impl.HttpInboundLink.handleDiscrimination(HttpInboundLink.java:472)
    at com.ibm.ws.http.channel.inbound.impl.HttpInboundLink.handleNewInformation(HttpInboundLink.java:411)
    at com.ibm.ws.http.channel.inbound.impl.HttpInboundLink.ready(HttpInboundLink.java:288)
    at com.ibm.ws.ssl.channel.impl.SSLConnectionLink.determineNextChannel(SSLConnectionLink.java:950)
    at com.ibm.ws.ssl.channel.impl.SSLConnectionLink$MyReadCompletedCallback.complete(SSLConnectionLink.java:582)
    at com.ibm.ws.ssl.channel.impl.SSLReadServiceContext$SSLReadCompletedCallback.complete(SSLReadServiceContext.java:1704)
    at com.ibm.ws.tcp.channel.impl.WorkQueueManager.requestComplete(WorkQueueManager.java(Compiled Code))
    at com.ibm.ws.tcp.channel.impl.WorkQueueManager.attemptIO(WorkQueueManager.java(Compiled Code))
    at com.ibm.ws.tcp.channel.impl.WorkQueueManager.workerRun(WorkQueueManager.java(Compiled Code))
    at com.ibm.ws.tcp.channel.impl.WorkQueueManager$Worker.run(WorkQueueManager.java(Compiled Code))
    at com.ibm.ws.util.ThreadPool$Worker.run(ThreadPool.java(Compiled Code))
    Caused by: java.security.cert.CertificateException: Certificate not Trusted
    at com.ibm.jsse.bi.a(Unknown Source)
    at com.ibm.jsse.bi.checkServerTrusted(Unknown Source)
    at com.ibm.jsse2.ba.checkServerTrusted(ba.java:16)
    ... 57 more
    javax.net.ssl.SSLHandshakeException: java.security.cert.CertificateException: Certificate not Trusted
    at org.apache.axis.AxisFault.makeFault(AxisFault.java:129)
    at org.apache.axis.transport.http.HTTPSender.invoke(HTTPSender.java:131)
    at org.apache.axis.strategies.InvocationStrategy.visit(InvocationStrategy.java:71)
    at org.apache.axis.SimpleChain.doVisiting(SimpleChain.java:150)
    at org.apache.axis.SimpleChain.invoke(SimpleChain.java:120)
    at org.apache.axis.client.AxisClient.invoke(AxisClient.java:180)
    at org.apache.axis.client.Call.invokeEngine(Call.java:2564)
    at org.apache.axis.client.Call.invoke(Call.java:2553)
    at org.apache.axis.client.Call.invoke(Call.java:2248)
    at org.apache.axis.client.Call.invoke(Call.java:2171)
    at org.apache.axis.client.Call.invoke(Call.java:1691)
    at com.dtcc.insurance.fundtransfer.transport.TransportHandler.transport(TransportHandler.java:245)
    at com.dtcc.insurance.fundtransfer.router.MessageRouter.transport(MessageRouter.java:112)
    at com.dtcc.insurance.fundtransfer.controller.MessageController.processMessage(MessageController.java:155)
    at com.dtcc.insurance.fundtransfer.service.FundTransferServiceImpl.fundTransferRequest(FundTransferServiceImpl.java:88)
    at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
    at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java(Compiled Code))
    at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java(Compiled Code))
    at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java(Compiled Code))
    at java.lang.reflect.Method.invoke(Method.java(Compiled Code))
    at org.apache.axis.providers.java.RPCProvider.invokeMethod(RPCProvider.java:402)
    at org.apache.axis.providers.java.RPCProvider.processMessage(RPCProvider.java:309)
    at org.apache.axis.providers.java.JavaProvider.invoke(JavaProvider.java:333)
    at org.apache.axis.strategies.InvocationStrategy.visit(InvocationStrategy.java:71)
    at org.apache.axis.SimpleChain.doVisiting(SimpleChain.java:150)
    at org.apache.axis.SimpleChain.invoke(SimpleChain.java:120)
    at org.apache.axis.handlers.soap.SOAPService.invoke(SOAPService.java:481)
    at org.apache.axis.server.AxisServer.invoke(AxisServer.java:323)
    at org.apache.axis.transport.http.AxisServlet.doPost(AxisServlet.java:854)
    at javax.servlet.http.HttpServlet.service(HttpServlet.java:763)
    at org.apache.axis.transport.http.AxisServletBase.service(AxisServletBase.java:339)
    at javax.servlet.http.HttpServlet.service(HttpServlet.java:856)
    at com.ibm.ws.webcontainer.servlet.ServletWrapper.service(ServletWrapper.java:1572)
    at com.ibm.ws.webcontainer.servlet.ServletWrapper.handleRequest(ServletWrapper.java:762)
    at com.ibm.ws.webcontainer.webapp.WebApp.handleRequest(WebApp.java:3174)
    at com.ibm.ws.webcontainer.webapp.WebGroup.handleRequest(WebGroup.java:253)
    at com.ibm.ws.webcontainer.VirtualHost.handleRequest(VirtualHost.java:229)
    at com.ibm.ws.webcontainer.WebContainer.handleRequest(WebContainer.java:1970)
    at com.ibm.ws.webcontainer.channel.WCChannelLink.ready(WCChannelLink.java:114)
    at com.ibm.ws.http.channel.inbound.impl.HttpInboundLink.handleDiscrimination(HttpInboundLink.java:472)
    at com.ibm.ws.http.channel.inbound.impl.HttpInboundLink.handleNewInformation(HttpInboundLink.java:411)
    at com.ibm.ws.http.channel.inbound.impl.HttpInboundLink.ready(HttpInboundLink.java:288)
    at com.ibm.ws.ssl.channel.impl.SSLConnectionLink.determineNextChannel(SSLConnectionLink.java:950)
    at com.ibm.ws.ssl.channel.impl.SSLConnectionLink$MyReadCompletedCallback.complete(SSLConnectionLink.java:582)
    at com.ibm.ws.ssl.channel.impl.SSLReadServiceContext$SSLReadCompletedCallback.complete(SSLReadServiceContext.java:1704)
    at com.ibm.ws.tcp.channel.impl.WorkQueueManager.requestComplete(WorkQueueManager.java(Compiled Code))
    at com.ibm.ws.tcp.channel.impl.WorkQueueManager.attemptIO(WorkQueueManager.java(Compiled Code))
    at com.ibm.ws.tcp.channel.impl.WorkQueueManager.workerRun(WorkQueueManager.java(Compiled Code))
    at com.ibm.ws.tcp.channel.impl.WorkQueueManager$Worker.run(WorkQueueManager.java(Compiled Code))
    at com.ibm.ws.util.ThreadPool$Worker.run(ThreadPool.java(Compiled Code))
    Caused by: javax.net.ssl.SSLHandshakeException: java.security.cert.CertificateException: Certificate not Trusted
    at com.ibm.jsse2.bx.a(bx.java(Compiled Code))
    at com.ibm.jsse2.by.a(by.java(Compiled Code))
    at com.ibm.jsse2.by.a(by.java:473)
    at com.ibm.jsse2.w.a(w.java(Compiled Code))
    at com.ibm.jsse2.w.a(w.java(Compiled Code))
    at com.ibm.jsse2.v.a(v.java(Compiled Code))
    at com.ibm.jsse2.by.a(by.java(Compiled Code))
    at com.ibm.jsse2.by.l(by.java(Compiled Code))
    at com.ibm.jsse2.by.startHandshake(by.java(Compiled Code))
    at org.apache.axis.components.net.JSSESocketFactory.create(JSSESocketFactory.java:224)
    at org.apache.axis.transport.http.HTTPSender.getSocket(HTTPSender.java:157)
    at org.apache.axis.transport.http.HTTPSender.invoke(HTTPSender.java:114)
    ... 48 more
    Caused by: java.security.cert.CertificateException: Certificate not Trusted
    at com.ibm.jsse.bi.a(Unknown Source)
    at com.ibm.jsse.bi.checkServerTrusted(Unknown Source)
    at com.ibm.jsse2.ba.checkServerTrusted(ba.java:16)
    ... 57 more

    I found the fix from Oracle Support Knowlededge Base
    sslTool serverInfo --url https://HOST:9043 --certFile newcert.cer
    PStoreTool located in REGISTRY_HOME/bin/PStoreTool add -config
    WEBLOGIC_HOME/user_projects/domains/[osr_domain_name]/servers/[osr_server_name]/tmp/_WL_user/registry/[unique id]/public/conf/pstore.xml -certFile newcert.cer
    I was updating wrong file with the certificate. It had to be pstore.xml. This solved my issue.
    Thanks & Regards,
    Parshant

  • Time Capsule Internet WAN port is not working, what can I do to set it up?

    When I plug the ethernet cable from my router to my Time Capsule it should turn on a green light in the back of the TC, but this light is not turning it on anymore, and this port is not working, how can I set it up?
    I want to create a wireless network with the TC, but if this port (Ethernet WAN port) doesn't work, I can't, or can I? How?
    Then I want to use my 2 Airport Express to use the network that I want to create.
    I hope you can help me, thanks a lot.

    what model is the TC? A1xxx from the base please.
    How old and is the front LED otherwise showing it is operating OK?
    What is the network setup..? Is the TC bridged or router.. or is it in Join wireless network mode now..
    If the later.. the ethernet ports are turned off.. you need to do a factory reset of the TC.
    Factory reset.. Hold in reset button.. THEN power on the TC.. keep holding in reset for about 10sec until the front LED flashes rapidly.. there is a good chance the ethernet will work now.

  • Keychain root certificate not trusted (?)

    I see a couple of items in keychain access that say "root certificate not trusted"
    what is this and should they be deleted or somehow modified?
    I looked at certificates with Certificate assistant "evaluate certificate"
    but do not quite understand.
    Thanks

    Ok I'll try not to...
    Thanks

  • Linksys Certificate Not Trusted

    ...how can I trust it? Every time I go to my Linksys router with HTTPS, I receive a certificate not trusted error in my browser. I have already imported the certificate into my keychain on OS X, what else can I do?
    It would be great if there was a "Trust" option next to the various errors which are displayed.
    O.S. = OS X 10.73
    Browser = Chrome
    Thanks in advance for any ideas.

    I am using a WRT54GS running firmware 4.70.6. Mozilla Firefox has the option to explicitly trust the certificate and Safari will use keychains certs to repudiate. Google Chrome (my primary browser) shows the following result.
    Internet Explorer (9) shows the following, which is similar to the screen posted. I have tried to import the certificate into trusted publishers, but it won't take.

  • Certificate not trusted

    This shows up in my certificates in red: com.apple.systemdefault organization system identity certificate not trusted.  Should I be concerned about this...does it indicate a security breach?

    Can you please let us know, how you have resolved the issue. We are also getting the similar issue with the Certificate.

  • Thawte SSL certificate not trusted?

    I've been searching Google for solutions but haven't found anything. Had to enable SSL for the meeting server so that it would work from behind a firewall that was blocking the FMS. Bought a SSL123 certificate from a Thawte reseller. I installed it following instructions. Now when connecting to the meeting server brings up a message that the certificate was signed by an unknown authority, and then connectaddin generally crashes and I have to "Force Quit".
    Does anyone know how to resolve this? Is it the certificate itself? Could it be configuration?

    Need to add the "Intermediate CA Certificate" to the pem file, as per https://search.thawte.com/support/ssl-digital-certificates/index?page=content&actp=CROSSLI NK&id=SO13881 (it took both my cert reseller and Adobe support several days to reach that conclusion - and the Adobe phone support person told me about this solution just as the email from my cert reseller came in!)
    I just opened the pem file in notepad, copied and pasted the above cert under it (as per http://www.connectusers.com/forums/cucbb/viewtopic.php?pid=4315#p4315), fixed EOL characters, saved, restarted services and it worked.

  • SSL port is enabled, so why can't I connect through HTTPS?

    Hi,
    I'm using Weblogic 9.2.2, Solaris 9 with Java 1.5 We have our created our managed server within a cluster, and although we have enabled the SSL listen port ...
    http://screencast.com/t/t5UN6Exwp
    when I try connecting to our app through HTTPS in a web browser, I get a "Failed to Connect" error. Specifically in Firefox it says http://screencast.com/t/TGl0FIuQ. However, i can connect to our app fine through the HTTP port. How should I start troubleshooting this problem or what other info should I provide here?
    Thanks, - Dave

    I tried everyone's suggestions and wanted to report back the results. Running
    netstat -na | grep LIST | grep 7032produced no data. I did find a reference to the SSL port (7032) in my server log file, but didn't see any errors associated with it (I listed the working HTTP port first to compare) ...
    ####<Mar 12, 2009 10:47:03 AM EDT> <Info> <RJVM> <pacdcbpmdeva01a.cable.myco.com> <mmwcdc311> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1236869223832> <BEA-000570> <Network Configuration for Channel "mmwcdc311"
    Listen Address 24.40.36.101:7031
    Public Address N/A
    Http Enabled true
    Tunneling Enabled false
    Outbound Enabled false
    Admin Traffic Enabled true>
    ####<Mar 12, 2009 10:47:03 AM EDT> <Info> <RJVM> <pacdcbpmdeva01a.cable.myco.com> <mmwcdc311> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1236869223834> <BEA-000570> <Network Configuration for Channel "mmwcdc311"
    Listen Address 24.40.36.101:7032 (SSL)
    Public Address N/A
    Http Enabled true
    Tunneling Enabled false
    Outbound Enabled false
    Admin Traffic Enabled true>
    ####<Mar 12, 2009 10:47:03 AM EDT> <Debug> <RJVM> <pacdcbpmdeva01a.cable.myco.com> <mmwcdc311> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1236869223835> <BEA-000571> <Network Configuration Detail for Channel "mmwcdc311"
    Finally, openssl produced:
    [weblogic@mymachine logs]$ openssl s_client -connect 24.40.36.101:7032
    connect: Connection refused
    connect:errno=29
    Anything else I should be looking for? - Dave

  • Digital ID certificate not trusted

    I'm trying to add digital ID certificates for governmental employees with whom I communicate by e-mail.  I used an e-mail including those certificates (*.cer format) to transmit the certs to the new IPad, and I was able to install them, but they are all listed as "Not Trusted".  How do I go about designating that they are to be trusted?
    I also added my own digital ID cert (*pfx format), and it has exactly the same situation:  installed, but "not trusted."
    Thanks.

    Thanks for reply but the message comes up every time I log into Santander. Interestingly this happens on Safari and Chrome but if I use my old browser Camino it comes up as secure. Will ring Santander again today and my ISP to see if they can shed any light. The same issue has occurred on ebay too but that seems to have resolved itself. Will let you know if I make any progress

  • This Connection is untrusted (issuer certificate not trusted)

    For the past week I have been unable access internet sites via firefox. I keep getting the "The connection is untrusted" error. It does not matter what site, be it google, Mozilla or Yahoo mail.
    I have deleted the cert8.db file, cleaned my history and cache and reset firefox but nothing helps. When I go through the "I understand the risk" steps the sites load but not properly. Usually no pictures will load.

    www.google.com uses an invalid security certificate.
    The certificate is not trusted because the issuer certificate is not trusted.
    (Error code: sec_error_untrusted_issuer)
    It is a work computer and I believe we use McAffee.
    I follow the other directions and viewed the certificate. All looks OK, my time is correct, the certificate isn't set to expire till sometime in October.

  • Invalid WSDL - Certificate not trusted - Exception while publishing WSDL in OSR from HTTPS Server

    Hi,
    I am publishing a Web Service in OSR from an HTTPS Server. I am getting exception as
    Error message:
    WSDLException: faultCode=INVALID_WSDL: java.io.IOException: java.security.cert.CertificateException: Server certificate ....... is not trusted!
    To remove this exception I have done following steps
    a) Added Certificate from remote server in Identity Store of WebLogic Server using keytool utilitity
    keytool -import -alias devCertificate -file c:/certificates/okdsoa.cer -truststore demoIdentityStore.jks
    b) Added Certificate from remote server in the trust store of weblogic server using keytool utility
    keytool -import -alias devCertificate -file c:/certificates/okdsoa.cer -truststore demoTrust.jks
    This didnot help.
    Then I imported certificate to OSR using PStoreTool command as
    PStoreTool.bat add -config C:/OSRHome/registry111/conf/clientconf.xml -certFile c:/certificates/okdsoa.cer
    Bounced the servers but that also didnot help.
    Can you please suggest?
    Thanks,
    Parshant

    I found the fix from Oracle Support Knowlededge Base
    sslTool serverInfo --url https://HOST:9043 --certFile newcert.cer
    PStoreTool located in REGISTRY_HOME/bin/PStoreTool add -config
    WEBLOGIC_HOME/user_projects/domains/[osr_domain_name]/servers/[osr_server_name]/tmp/_WL_user/registry/[unique id]/public/conf/pstore.xml -certFile newcert.cer
    I was updating wrong file with the certificate. It had to be pstore.xml. This solved my issue.
    Thanks & Regards,
    Parshant

  • Apple root certificates not trusted?

    I was looking through Keychain Access, and came across these two Apple root certificates that Keychain reports as "This root certificate is not trusted."
    com.apple.kerberos.kdc
    com.apple.systemdefault
    There was also a "localhost" certificate with a Comcast email address that was similarly marked as not trusted.
    Any idea why any of these would not be trusted?
    Thanks,
    JC

    Yes, reinstalling is the backup plan.
    But this Macbook is about one year old. I should not cause that much trouble.

  • Certificates NOT trusted

    Hello all.......
    I have issues w/ "com.apple.systemdefault"  certificate (& other Apple certificates) not being trusted... I have yet to find a response to queries re: same.... Is this something no one can answer OR maybe a too simple a problem to take time with?
    TIA, Jack

    Hello all.......
    I have issues w/ "com.apple.systemdefault"  certificate (& other Apple certificates) not being trusted... I have yet to find a response to queries re: same.... Is this something no one can answer OR maybe a too simple a problem to take time with?
    TIA, Jack

  • Firefox blocks sites certificate not trusted

    I reset firefox to try and cure a email printing issue where firefix was printing all emails in tiny font. After the reset firefox would not access sites like google because the certificate was not trusted. I tried turning off my security system - Norton - but that didn't correct the problem. I also reinstalled firefox but the problem persisted. Also made sure that I had the proper time set in the computer. I'm using IE to get my emails and access sites that firefox is blocking me from but would like to cure the firefox issue.

    hello, a possible solution depends on different factors:
    * what is the '''error code''' shown under ''technical details'' on the error page?
    in case the error code equals ''sec_error_unknown_issuer'', please attempt to add an exception on the bottom of the error page & inspect the certificate (see the screenshot attached for instructions):
    * which '''issuer information''' does the certificate contain?
    thank you!
    [["This Connection is Untrusted" error message appears - What to do]]

Maybe you are looking for

  • Why won't iPhoto download? I've downloaded the new Yosemite and now it won't let me download iphoto 9.6

    I have a Macbook pro. I recently downloaded Yosemite and once that had downloaded iphoto was not compatible (it had a barred sign across it). So I moved it to the trash bin and went to the app store to download the latest version of iphoto 9.6. Howev

  • Mail will not send to smart Group

    I have several smart groups set up and have been using them for mail distribution for years.  All of a sudden, yesterday, several of them will not work for Mail.  I can't expand the group and I press the send button- nothing happens.  Any Suggestions

  • Any permanent Adobe Creative Cloud license?

    I know there's plans for Creative Cloud. I want to know if there's any way to have a permanent Creative Cloud license (Adobe Photoshop CC, Flash Professional CC, Premier CC, and so on). Thank you! (Permanent license for only one PC) God bless you. (S

  • OSX not listed in Vista Boot Camp Control Panel as a Startup Disk

    When I go to the Boot Camp Control Panel in Vista, OSX is not listed as a startup disk option, only Windows is. Also if I right click the Boot Camp icon in the tray and choose "Restart in MAC OS X" that does not work. Vista Ultimate is installed on a

  • Update Manager - "Dashes" instead of "Ticks". Cannot install patches.

    Hi All, I have almost finished patching my x86 Dual Xeon System to the hilt, However, on my last XSession, it was abruptly cut off during a patch install. Now ALL my patches (even ones that apply ot my system) have a "*-*" instead of a "*tickable*" b