Hi all. I had configured an Apache Tomcat Server for https with CAS, and I define in server.xml the keystorefile and the truststorefile. https://localhost:4334/cas-web/login work well with an user/pass valid.
I used phpCAS as a client for tests proposes and it work fine when I specified the CA certificate. Also a Liferay server work fine too. But with the CAS Services Management I see this error[1]. I review this page: https://wiki.jasig.org/display/CASUM/SSL+Troubleshooting+and+Reference+Guide And my question is: where are located the truststore of CAS Service Management? Thanks, Jorge. [1] sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target sun.security.provider.certpath.SunCertPathBuilder.engineBuild(SunCertPathBui lder.java:174) java.security.cert.CertPathBuilder.build(CertPathBuilder.java:238) sun.security.validator.PKIXValidator.doBuild(PKIXValidator.java:280) sun.security.validator.PKIXValidator.engineValidate(PKIXValidator.java:191) sun.security.validator.Validator.validate(Validator.java:218) com.sun.net.ssl.internal.ssl.X509TrustManagerImpl.validate(X509TrustManagerI mpl.java:126) com.sun.net.ssl.internal.ssl.X509TrustManagerImpl.checkServerTrusted(X509Tru stManagerImpl.java:209) com.sun.net.ssl.internal.ssl.X509TrustManagerImpl.checkServerTrusted(X509Tru stManagerImpl.java:249) com.sun.net.ssl.internal.ssl.ClientHandshaker.serverCertificate(ClientHandsh aker.java:1014) com.sun.net.ssl.internal.ssl.ClientHandshaker.processMessage(ClientHandshake r.java:124) com.sun.net.ssl.internal.ssl.Handshaker.processLoop(Handshaker.java:516) com.sun.net.ssl.internal.ssl.Handshaker.process_record(Handshaker.java:454) com.sun.net.ssl.internal.ssl.SSLSocketImpl.readRecord(SSLSocketImpl.java:884 ) com.sun.net.ssl.internal.ssl.SSLSocketImpl.performInitialHandshake(SSLSocket Impl.java:1112) com.sun.net.ssl.internal.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java :1139) com.sun.net.ssl.internal.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java :1123) sun.net.www.protocol.https.HttpsClient.afterConnect(HttpsClient.java:434) sun.net.www.protocol.https.AbstractDelegateHttpsURLConnection.connect(Abstra ctDelegateHttpsURLConnection.java:166) sun.net.www.protocol.http.HttpURLConnection.getInputStream(HttpURLConnection .java:1026) sun.net.www.protocol.https.HttpsURLConnectionImpl.getInputStream(HttpsURLCon nectionImpl.java:234) org.jasig.cas.client.util.CommonUtils.getResponseFromServer(CommonUtils.java :281) org.jasig.cas.client.validation.AbstractCasProtocolUrlBasedTicketValidator.r etrieveResponseFromServer(AbstractCasProtocolUrlBasedTicketValidator.java:33 ) org.jasig.cas.client.validation.AbstractUrlBasedTicketValidator.validate(Abs tractUrlBasedTicketValidator.java:178) org.springframework.security.cas.authentication.CasAuthenticationProvider.au thenticateNow(CasAuthenticationProvider.java:131) org.springframework.security.cas.authentication.CasAuthenticationProvider.au thenticate(CasAuthenticationProvider.java:117) org.springframework.security.authentication.ProviderManager.doAuthentication (ProviderManager.java:120) org.springframework.security.authentication.AbstractAuthenticationManager.au thenticate(AbstractAuthenticationManager.java:48) org.springframework.security.cas.web.CasAuthenticationFilter.attemptAuthenti cation(CasAuthenticationFilter.java:104) org.springframework.security.web.authentication.AbstractAuthenticationProces singFilter.doFilter(AbstractAuthenticationProcessingFilter.java:199) org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilte r(FilterChainProxy.java:355) org.springframework.security.web.authentication.logout.LogoutFilter.doFilter (LogoutFilter.java:105) org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilte r(FilterChainProxy.java:355) org.springframework.security.web.context.SecurityContextPersistenceFilter.do Filter(SecurityContextPersistenceFilter.java:79) org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilte r(FilterChainProxy.java:355) org.springframework.security.web.FilterChainProxy.doFilter(FilterChainProxy. java:149) org.springframework.web.filter.DelegatingFilterProxy.invokeDelegate(Delegati ngFilterProxy.java:237) org.springframework.web.filter.DelegatingFilterProxy.doFilter(DelegatingFilt erProxy.java:167) -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
