You could grab the java key store for the certificate authority that ONAP generated and add it to your clients keystore. Search the wiki/gerrit for how the ONAP projects update their java keystores.
Bran From: Viresh R Navalli <[email protected]> Sent: Wednesday, March 13, 2019 8:05 AM To: [email protected]; FREEMAN, BRIAN D <[email protected]> Cc: Chandrashekhar Thakare <[email protected]> Subject: [onap-discuss] #aai unable to find valid certification path to requested target Thanks Brian for info. I am using Casablanca. Seems it is from client side. Is there any workaround if not able to turn off certificate validation from client? _________________ Thanks & Regards Viresh N From: [email protected]<mailto:[email protected]> [mailto:[email protected]] On Behalf Of Brian Sent: Tuesday, March 12, 2019 06:26 PM To: [email protected]<mailto:[email protected]>; Viresh R Navalli <[email protected]<mailto:[email protected]>> Cc: Chandrashekhar Thakare <[email protected]<mailto:[email protected]>> Subject: Re: [onap-discuss] #aai unable to find valid certification path to requested target Viresh, Dublin or Casablanca ? Is that from your client or are you getting that back from AAI ? If its from your client - turn off certficate validation. Brian From: [email protected]<mailto:[email protected]> <[email protected]<mailto:[email protected]>> On Behalf Of Viresh R Navalli Sent: Tuesday, March 12, 2019 8:15 AM To: [email protected]<mailto:[email protected]> Cc: Chandrashekhar Thakare <[email protected]<mailto:[email protected]>> Subject: [onap-discuss] #aai unable to find valid certification path to requested target Hi Team, Trying to call AAI api from external Java application, getting below error. Routing to failure due to exception : sun.security.validator.ValidatorException: PKIX path building failed sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target : javax.net.ssl.SSLHandshakeException Any pointers would be helpful. _________________ Thanks & Regards Viresh N ============================================================================================================================ Disclaimer: This message and the information contained herein is proprietary and confidential and subject to the Tech Mahindra policy statement, you may review the policy at http://www.techmahindra.com/Disclaimer.html<https://urldefense.proofpoint.com/v2/url?u=http-3A__www.techmahindra.com_Disclaimer.html&d=DwMFAg&c=LFYZ-o9_HUMeMTSQicvjIg&r=e3d1ehx3DI5AoMgDmi2Fzw&m=dLYv4BLZiyWl3gwcreCgQNFj-zQGeeWmpQCqDNt745g&s=n71Eg34mQT_H4SYDh7outXGAw3u3i7isXOCNzCyy1NM&e=> externally http://tim.techmahindra.com/tim/disclaimer.html<https://urldefense.proofpoint.com/v2/url?u=http-3A__tim.techmahindra.com_tim_disclaimer.html&d=DwMFAg&c=LFYZ-o9_HUMeMTSQicvjIg&r=e3d1ehx3DI5AoMgDmi2Fzw&m=dLYv4BLZiyWl3gwcreCgQNFj-zQGeeWmpQCqDNt745g&s=L8CrEAlA8AZtqGeLuJcIVr1CPrBQIXH0NmYz5VTgyNY&e=> internally within TechMahindra. ============================================================================================================================ -=-=-=-=-=-=-=-=-=-=-=- Links: You receive all messages sent to this group. View/Reply Online (#16007): https://lists.onap.org/g/onap-discuss/message/16007 Mute This Topic: https://lists.onap.org/mt/30400416/21656 Mute #aai: https://lists.onap.org/mk?hashtag=aai&subid=2740164 Group Owner: [email protected] Unsubscribe: https://lists.onap.org/g/onap-discuss/unsub [[email protected]] -=-=-=-=-=-=-=-=-=-=-=-
