AnsweredAssumed Answered

SSL Error: No X509TrustManager implementation available

Question asked by thenetstriker on Dec 18, 2014
I've just configured my Alfresco 5.0.c installation to use an SSL certificate generated by my Windows Server 2003 Certificate Authority. I can open the share, alfreso and solr websites using the certificate without problems. But when I try to login I get an error because the share site cannot call the alfresco site. In the log I found many of the following errors:


19:31:23,568 INFO  [org.springframework.extensions.webscripts.connector.RemoteClient] [http-apr-8444-exec-7] Exception calling (GET) https://Ubuntux64:8444/alfresco/s/api/admin/restrictions?guest=true
19:31:23,622 INFO  [org.springframework.extensions.webscripts.connector.RemoteClient] [http-apr-8444-exec-7] Error status 500 java.security.cert.CertificateException: No X509TrustManager implementation available
javax.net.ssl.SSLHandshakeException: java.security.cert.CertificateException: No X509TrustManager implementation available
   at sun.security.ssl.Alerts.getSSLException(Unknown Source)
   at sun.security.ssl.SSLSocketImpl.fatal(Unknown Source)
   at sun.security.ssl.Handshaker.fatalSE(Unknown Source)
   at sun.security.ssl.Handshaker.fatalSE(Unknown Source)
   at sun.security.ssl.ClientHandshaker.serverCertificate(Unknown Source)
   at sun.security.ssl.ClientHandshaker.processMessage(Unknown Source)
   at sun.security.ssl.Handshaker.processLoop(Unknown Source)
   at sun.security.ssl.Handshaker.process_record(Unknown Source)
   at sun.security.ssl.SSLSocketImpl.readRecord(Unknown Source)
….


I've already added the CA certificate to all my trust- and keystores and also to the cacerts keystore in the java directory, but somehow the certificate can still not be verified. In Chome everything looks fine. The certificate ist also trusted in Chrome. How can I solve this problem?

Outcomes