File APIs for Java Developers
Manipulate DOC, XLS, PPT, PDF and many others from your application.
The moose likes Sockets and Internet Protocols and the fly likes Need Expert openion on 'untrusted server cert chain' Big Moose Saloon
  Search | Java FAQ | Recent Topics | Flagged Topics | Hot Topics | Zero Replies
Register / Login
JavaRanch » Java Forums » Java » Sockets and Internet Protocols
Bookmark "Need Expert openion on Watch "Need Expert openion on New topic

Need Expert openion on 'untrusted server cert chain'

Nathan KV

Joined: Aug 09, 2001
Posts: 25
Hai guys,
We are facing the 'untrusted server cert chain' problem.
And i know that
"client cannot trust the server, because it cannot find a certificate in it's keystore that has verified the server's certificate"
In Server (Weblogic 5.1) we are using the defalut weblogic democert.pem certificate. And using the keytool we have imported the democert.pem in our client. So now my client keystore is haveing the certificate which is used by the server(Weblogic 5.1).
I checked the keystore in client using the command

keytool -list

Even now we are facing the same(untrusted server cert chain) problem ?
Are u people sure that the problem is in Client side ?
Is there any Soultions avaliable for this problem ?
[ April 22, 2002: Message edited by: Nathan KV ]
Peter den Haan
Ranch Hand

Joined: Apr 20, 2000
Posts: 3252
I'm assuming we're talking JSSE here... the did you import the certificate in "cacerts" rather than any other keystore? Somewhere in the server certificate chain, JSSE expects to find a Certificate Authority (CA) certificate from cacerts.
- Peter
I agree. Here's the link:
subject: Need Expert openion on 'untrusted server cert chain'
It's not a secret anymore!