-
Notifications
You must be signed in to change notification settings - Fork 91
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
PKIX path validation failed with AS2 in 3.0.2 #180
Comments
AS2 verifies the certificate chain of the receiver, and it seems your SSL/TLS certificate expired a few days ago. Sendt fra min iPhone
|
I'm closing this issue, the SSL certificate needs to be valid and you have to include any intermediate certificates in the chain. The "troubleshooting" section has been updated with some more info about this : Good luck :) |
Hi Thore, We have upgraded with valid certificate and also all intermediate certificate is available in the certificate path ( as suggested in issue #173.) But still we get same problem. Do we need to add root and intermediate certificate in java key store of our JVM ? |
You do not need to add any certs to your JVM. You only need to replace the SSL certificate on your web server (or loadbalancer / proxy) with a new and valid one from a well known trusted CA. You also need to include any intermediate certs. Seems like your URL is offline right now so I was unable to verify, but there are serveral online versions available - like this : https://www.digicert.com/help/ |
The chain is not complete - make sure to provide intermediate certificate (see "Extra download"). |
Hi we are getting following error. It works fine with START. But only in AS2. Do we need to do configure something different for AS2 ?
java.lang.IllegalStateException: Unexpected error during execution of http POST to https://peppolap.everbinding.nl/as2: sun.security.validator.ValidatorException: PKIX path validation failed: java.security.cert.CertPathValidatorException: timestamp check failed.
The text was updated successfully, but these errors were encountered: