Error: SunCertPathBuilderException: unable to find valid certification path to requested target

Component: SSL | Version: N/A

Symptoms

You see the following error in your logs:

Caused by: javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed:sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target '

Troubleshooting

You need to check your install again and confirm:

1. Make sure you have imported the public certificate of the target instance into the truststore according to the Connecting to SSLServices instructions: [https://documentation.bonitasoft.com/bonita/7.7/ssl](https://documentation.bonitasoft.com/bonita/7.7/ssl)

2. Make sure the imported certificate has not expired.

3. Make sure the certificates have been imported into the correct truststore;

• Check whether your application is using a custom truststore. For example, if -Djavax.net.ssl.trustStore has been configured, it will override the location of the default truststore.
• Else, the default truststore of the JVM is used, namely (beware: you may have multiple JRE/JDKs): <%JAVA_HOME%>/jre/lib/security/cacerts
  (In order to add your SSL server's certificate into this truststore, the default password is: changeit).

4. Check if your Anti Virus tool has "SSL Scanning" blocking SSL/TLS. If it does, disable this feature or set exceptions for the target addresses

5. Verify that the target server is configured to serve SSL correctly. This can be done with an SSL Server Test tool. 6. Make sure you used keytool to install the new certificat.

More info online: [http://docs.oracle.com/javase/7/docs/technotes/tools/windows/keytool.html(http://docs.oracle.com/javase/7/docs/technotes/tools/windows/keytool.html)

6. Make sure your truststore is not out of date.